Cert2Connect

  • FIND ALL YOUR CYBER SECURITY ANSWERS ON OUR WIKI PAGE

    The Cert2Connect wiki for a clear overview of terminology and the many abbreviations in the cyber, cloud and software security landscape.
    Cert2Connect

SQL injections

Articles count

SQL injections

An SQL injection is a vulnerability in a website or application that allows malicious users to enter and execute malicious SQL code through input fields or URL parameters. This allows them to access sensitive information or even manipulate the entire database of the website or application.

A common way to perform an SQL injection is to enter special characters in input fields, such as single quotes or apostrophes. This allows the user's input to be interpreted and executed as SQL code, with all the consequences that entails.
To prevent SQL injections, it is important to validate user input and filter it for special characters. The use of parameterized queries can also help prevent SQL injections. By taking these measures, the security of a website or application can be strengthened and sensitive data can be protected against malicious attacks.

Updated on 07 Aug, 2023
Tagged Checkmarx Bright
Overview

View related articles

Cert2Connect

Contact one of our specialists

We would like to assist you. If needed, we are ready to organize a presentation or demo of our solution approach. You can also regularly find us at trade fairs and events. Follow the events page on this site or sign up via the contact page for our newsletter.

Make an appointment