Have you ever wondered about why some hackers get or even edit and delete datas usually web programs. That technique is called SQL Injection which is defined as a technique that exploits a security vulnerability occurring in the database layer of an application. The vulnerability is present when user input is either incorrectly filtered for string literal escape characters embedded in SQL statements or user input is not strongly typed and thereby unexpectedly executed. It is in fact an instance of a more general class of vulnerabilities that can occur whenever one programming or scripting language is embedded inside another. Because of that threat, I searched the web for solutions on how to somehow evade those kinds of infiltrations for my project in school. I then found a site that shows how to evade SQL Injection. I just want to share this for the good of all. Just click this link to view the site. Or you could download the pdf file that shows all the contents.
Sources: Wikipedia, SQLInjectionSignature
