+ 1
What is a SQL injection and how do I code one?
I am nearly done learning SQL and what took my attention is SQL vulnerabilities and SQL injections (SQLi), how is it made?
8 ответов
+ 7
nothing.. just knowledge of sql and a poorly designed website
see here for more info: https://www.w3schools.com/sql/sql_injection.asp
+ 6
it is made possible by poor design.
i.e not checking user input for validity before processing
+ 6
It is usually done on website forms where the user has to insert information. Instead of information like name, you put sql commands.
+ 5
Explainxkcd's comments (for the webcomic xkcd) are usually pretty helpful:
https://www.explainxkcd.com/wiki/index.php/327:_Exploits_of_a_Mom
+ 3
I see! I get it clearly now! Thanks guys!
+ 1
Still confused though. ._.
+ 1
Yes, but what programs do I need to do so?