001 Introduction to SQL Injections

Taleem Mela
  • 6 years ago

SQL Injection (SQLi) refers to an injection attack wherein an attacker can execute malicious SQL statements (also commonly referred to as a malicious payload) that control a web application’s database server (also commonly referred to as a Relational Database Management System – RDBMS). Since an SQL Injection vulnerability could possibly affect any website or web application that makes use of an SQL-based database, the vulnerability is one of the oldest, most prevalent and most dangerous of web application vulnerabilities.

By leveraging an SQL Injection vulnerability, given the right circumstances, an attacker can use it to bypass a web application’s authentication and authorization mechanisms and retrieve the contents of an entire database. SQL Injection can also be used to add, modify and delete records in a database, affecting data integrity.

To such an extent, SQL Injection can provide an attacker with unauthorized access to sensitive data including, customer data, personally identifiable information (PII), trade secrets, intellectual property and other sensitive information.

Recommended

10:00
I
Up next
hacking website sql injection (jshopping products) +kali linux 2.0 -part-1-
Linux
4:37
Lets Try Facebook Hacking Facebook Hacking Possible Or Not Facebook Phishing Attack
TechShalla
11:43
Hacking using Excel (.xls) and Word (.doc) Payload Injections
DonDoes30

Featured channels

More from
Abb Takk
More from
ARY NEWS
More from
Video Zone
More from
Khundi Wali Sarkar (Arshad Sound) ارشد ساؤنڈز
More from
PB Studio Music
More from
Digital Entertainment World