Ruby
  1. Home
  2. Computing & Technology
  3. Ruby

SQL Injection

By Amanda & Michael Morin, About.com

Definition:

SQL Injection: SQL Injection is a vulnerability in web applications in which user input is not properly sanitized and characters special to SQL (such as the ' quote character) are allow to pass unfiltered in an SQL query. This allows attackers to execute arbitrary SQL queries and possibly obtain sensitive information that could lead to full compromise of the application. SQL injection can be avoided by properly sanitizing all user input before using in an SQL query.

Explore Ruby
About.com Special Features
Family Tech Center

Stay connected and entertained with reviews on tips on the latest HDTVs, cellphones and more. More >

Connect Your Home Computers

Easy ways to connect two computers for networking purposes. More >

Ruby
  1. Home
  2. Computing & Technology
  3. Ruby
  4. Glossary
  5. S - Z
  6. SQL Injection

©2009 About.com, a part of The New York Times Company.

All rights reserved.