Ruby
  1. Home
  2. Computing & Technology
  3. Ruby

SQL Injection

By , About.com Guide

Definition:

SQL Injection: SQL Injection is a vulnerability in web applications in which user input is not properly sanitized and characters special to SQL (such as the ' quote character) are allow to pass unfiltered in an SQL query. This allows attackers to execute arbitrary SQL queries and possibly obtain sensitive information that could lead to full compromise of the application. SQL injection can be avoided by properly sanitizing all user input before using in an SQL query.

Explore Ruby
About.com Special Features

The Best Web Trends of the Decade

A look back at the best innovations, ideas and technologies over the last 10 years, More >

Family Tech Center

Stay connected and entertained with reviews on tips on the latest HDTVs, cellphones and more. More >

Ruby
  1. Home
  2. Computing & Technology
  3. Ruby
  4. Glossary
  5. S - Z
  6. SQL Injection

©2009 About.com, a part of The New York Times Company.

All rights reserved.