Sql Injection Vulnerability
These days hacking been a nightmare for the webmasters. But we should always remember that, if there is no Hacking there’ll be no Security upgrade. There are many types of web vulnerabilities like Sql injections, Cross Site Scripting, DDos etc. Here I’ll tell you about the most common vulnerability- Sql Injection. First we must know about the vulnerability.
What is Sql Injection?
Sql injection is nothing but insertion or “injection” of a SQL query via the input data from the client to the application. By a successful Sql injection a Hacker can read the sensitive data from the database, modify or delete the data from the database. SQL Injection is very common with PHP and ASP applications due to the prevalence of older functional interfaces. Due to the nature of programmatic interfaces available, J2EE and ASP.NET applications are less likely to have easily exploited SQL injections. The severity of SQL Injection attacks is limited by the attacker’s skill and imagination, and to a lesser extent, defense in depth countermeasures, such as low privilege connections to the database server and so on. In general, consider SQL Injection a high impact severity.
What an Attacker can Do?