What is SQL Injection?
- This topic has 5 replies, 4 voices, and was last updated 7 years, 12 months ago by .
-
Posts
-
SQL Injection occurs when the user of an application is able to affect the meaning of database query. This often occurs when arbitary strings from user input are concatenated to create SQL which is fed to the database
SQL Injection is a technique used to inject SQL commands into an SQL statement. SQL injection attacker user can read and edit sensitive data from the database and can steal information from a database. SQL injection is used to attack any type of SQL database.
The code injection technique is known as SQL Injection, the SQL Injection technique is used to attack on an application that is compelled by data, in which malicious SQL statements are inserted into an entry field for execution. The SQL injection is most likely known as an attacking vector for the websites but the SQL injection can be used to attack any type of SQL database. To know more about SQL Injection please move on this hoping you will find the exact help as you want.
https://technet.microsoft.com/en-us/library/ms161953(v=sql.105).aspxIts not good idea to test for SQL injection.the best way is to use bound parameters in your queries and prevent SQL Injection.
- You must be logged in to reply to this topic.