Using parse tree validation to prevent SQL injection attacks.
An SQL injection attack targets interactive web applications that employ database services. Such applications accept user input, such as form fields, and then include this input in database requests, typically SQL statements. In SQL injection, the attacker provides user input that results in a diffe...
| Published in: | Software engineering notes. 30, 5 (2005). |
|---|---|
| Main Author: | |
| Format: | Article |
| Language: | English |