SQL Injection

Posted by author-avatar
« Back to Glossary Index

SQL Injection (SQLi) is an attack technique in which an attacker injects malicious SQL code through input fields or URL parameters of an application. If user input is not properly validated, the attacker may be able to read, modify, or delete data, and in some cases gain full control over the database.

« Back to Dictionary Index
Newer
OWASP Top 10
Older Blackbox