A Survey on SQL Injection Attacks, Detection and Prevention
Jianwei Hu, Wei Zhao, Yanpeng Cui
Abstract
Since the uses of Web in daily life is increasing in past 20 years and becoming trend now, almost every Web application has its own database to store important data. An attacker can get or even modify the data from database through SQL injection vulnerability, so it is one of the most serious problems in Web application security. In this paper, we present a detailed review on various types of SQL injection attacks and detection techniques based on machine learning. we also propose future expectations and possible development of countermeasures against SQL injection vulnerability at the end of the article.
Topics & Concepts
SQL injectionComputer scienceSQLVulnerability (computing)Web applicationWeb application securityDatabaseComputer securityWorld Wide WebQuery by ExampleThe InternetWeb developmentSearch engineWeb search queryWeb Application Security VulnerabilitiesSecurity and Verification in ComputingDigital and Cyber Forensics