Nytro Posted November 16, 2010 Report Share Posted November 16, 2010 Quick guide to SQL Injection attacks and defensesAuthors: ITSecTeamO parte din articol:A SQL injection attack consists of insertion or "injection" of a SQL query via the input data from theclient to the application. A successful SQL injection exploit can read sensitive data from thedatabase, modify database data (Insert/Update/Delete), execute administration operations on thedatabase (such as shutdown the DBMS), recover the content of a given file present on the DBMS filesystem and in some cases issue commands to the operating system. SQL injection attacks are a typeof injection attack, in which SQL commands are injected into data-plane input in order to effect theexecution of predefined SQL commands.SQL injection is a code injection technique that exploits a security vulnerability occurring in thedatabase layer of an application.....................................................................Download:http://itsecteam.com/files/Quick%20guide%20to%20SQL%20Injection%20attacks%20and%20defenses%20-%20english.pdf Quote Link to comment Share on other sites More sharing options...
