Start networking and exchanging professional insights

Register now or log in to join your professional community.

Follow

What is SQL Injection, and how can we avoid them while developing database-centric web pages?

user-image
Question added by Wael Shubeir , Senior Database Systems Engineer , UNISYS, SAPTCO, Atheeb Intergraph
Date Posted: 2017/10/23
Wael Shubeir
by Wael Shubeir , Senior Database Systems Engineer , UNISYS, SAPTCO, Atheeb Intergraph

It is a security vulnerability while developing database centric web pages, where the intruder may rewrite the url request in such a way the queries the database and retrieve sensitive data.

Database providers have come up with programming model to avoid such vulnerability.

For example, with Oracle database centric web pages, you may use Oracle Bind Variables to avoud such security hole accordingly.

More Questions Like This