What is SQL injection?
July 23rd, 2005
SQL injection is a class of exploits where an attacker can gain access to a database to retrieve data, add or remove database entries, bypass authentication, or even gain complete control of your server. It is not a vulnerability with the SQL database itself, but is a problem with non-validated input strings in the code of an application allowing commands to be executed on the back-end database.
This is also not language specific either. The errors can be found in any language used to write a web application including PHP, Java, Python and any other language that you use to call a SQL database.
This does not only affect Microsoft SQL server, but also can be used to exploit MySQL, PostgreSQL, and Oracle databases. Basically, anytime a web application relies on any type of dynamic content there is a chance that the application is vulnerable.
The attacker many times only has to add a well placed character such as a back tic (‘), semicolon (;), or a double dash (–) to successfully gain access to the data.
More details will follow in the next few days.
Entry Filed under: Web Application Security
Leave a Comment
Some HTML allowed:
<a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <code> <em> <i> <strike> <strong>
Trackback this post | Subscribe to the comments via RSS Feed