Web application security by SQL injection detection tools
SQL injection is a type of attack which the attacker adds Structured Query Language code to a web form input box to gain access or make changes to data. SQL injection vulnerability allows an attacker to flow commands directly to a web application's underlying database and destroy functionality...
Saved in:
| Main Authors: | , , |
|---|---|
| Format: | Article |
| Published: |
International Journal of Computer Science Issues
2012
|
| Subjects: | |
| Online Access: | http://eprints.utm.my/id/eprint/33643/ http://ijcsi.org/papers/IJCSI-9-2-3-332-339.pdf |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| Summary: | SQL injection is a type of attack which the attacker adds Structured Query Language code to a web form input box to gain access or make changes to data. SQL injection vulnerability allows an attacker to flow commands directly to a web application's underlying database and destroy functionality or confidentiality. Researchers have proposed different tools to detect and prevent this vulnerability. In this paper we present all SQL injection attack types and also current tools which can detect or prevent these attacks. Finally we evaluate these tools. |
|---|