Facebook F Xing Github Search Twitter YouTube LinkedIn Envelope Caret Right Check Long Arrow Right angle-left angle-right Blog landing-angriffsflaechewebseite-header Videos Info Documentation success White Papers Long Arrow Down Bars Times Bezier Curve Key Cogs Jenkins shield user-check code clipboard-check sitemap graduation-cap book books scanner-list users users-cog ciso user-secret money coins stopwatch wrench circle cx="74.965" cy="437.047" r="15"/> file-contract gdpr clipboard integrations videos

SQL Injection

What is an SQL Injection?

SQL Injection refers to the exploitation of an SQL database vulnerability caused by the lack of masking or validation of meta-characters in user input. The attacker attempts to inject his own database commands through the application which has access to the database.

As the request is not validated correctly, the inserted code changes the original SQL commands and therefore alters the results in favor of the attacker.

An SQL injection allows an attacker to run arbitrary SQL code in the database which may allow him to retrieve, change or delete data from the database. In some cases even the total control of the server which runs the database is possible.

Find SQL Injection vulnerabilities now!

Register now and set up a Full Scan of your web application to find and fix existing SQL Injection vulnerabilities.


How the Crashtest Security Suite helps you

The Crashtest Security Suite discovers injection attack vulnerabilities within your web application and shows you where these problems exist. Additionally, our own security wiki shows you how to efficiently remediate the vulnerability. Check out the article on SQL Injections for more details!


You haven't thought about web application security at all? Do a Quick Scan to find out existing vulnerabilities!

Customers that trust us: