← Cybersecurity Alphabet Soup

SQLi

SQL Injection

attackseasy

SQL Injection inserts malicious database commands into input fields that an application passes to its database without proper handling. Successful attacks can read, modify, or delete entire databases and sometimes take over the underlying server. Despite being decades old, it still causes major breaches, and it is reliably prevented with parameterized queries.

Sources

More in attacks