SQL INJECTION

SQL INJECTION

Siddharth S Siddharth S

Siddharth S

Published Dec 25, 2022
+ Follow

What is SQL Injections?

A SQL injection attack consists of insertion or “injection” of a SQL query via the input data from the client to the application. A successful SQL injection exploit can read sensitive data from the database, modify database data (Insert/Update/Delete), execute administration operations on the database (such as shutdown the DBMS), recover the content of a given file present on the DBMS file system and in some cases issue commands to the operating system. SQL injection attacks are a type of injection attack, in which SQL commands are injected into data-plane input in order to affect the execution of predefined SQL commands.

Here are some penetration testing methodologies:

No alt text provided for this image

To view or add a comment, sign in

More articles by Siddharth S

  • ARTICLE ON AUTHENTICATION VULNERABILITIES
    Apr 11, 2023

    ARTICLE ON AUTHENTICATION VULNERABILITIES

    What is authentication? Authentication is the process of verifying the identity of a given user or client. In other…

  • GOOGLE DORKS
    Mar 6, 2023

    GOOGLE DORKS

    Google Dorks are specific search queries that use advanced operators to search for specific information on the…

  • Insecure Direct Object References
    Nov 21, 2022

    Insecure Direct Object References

    What are Insecure Direct Object References (IDOR)? Insecure direct object references (IDOR) are a type of access…

Explore content categories