SQL Injection Attacks on Indian Websites

Yadav, Nilesh; Shekokar, Narendra

doi:10.1201/9781003218555-15

Cited by 1 publication

(1 citation statement)

References 0 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Stored procedures are executed on the database server, rather than on the web server, making it more difficult for an attacker to inject malicious code into the SQL query. Stored procedures are particularly useful for executing complex database operations, such as aggregating data or processing large amounts of data [10]. They are also more efficient than dynamic SQL statements, as they are pre-compiled and optimized for performance.…”

Section: Stored Proceduresmentioning

confidence: 99%

SQL Injection Attack: Quick View

Abdullayev

Chauhan

2023

MJCS

View full text Add to dashboard Cite

SQL injection is a type of security vulnerability that occurs in database-driven web applications where an attacker injects malicious code into the application to gain unauthorized access to sensitive information. This paper aims to provide a comprehensive and systematic review of the existing methods for preventing and detecting SQL injection attacks. The review covers a range of techniques, including input validation, parameterized queries, and intrusion detection systems, as well as the advantages and disadvantages of each method. The most common prevention techniques include input validation, parameterized queries, and stored procedures, while the most common detection techniques include intrusion detection systems (IDS), honeypots, and signature-based detection. The choice of method will depend on the specific requirements of the organization and the level of security required. Still, a combination of prevention and detection methods is likely to be the most effective way to secure web applications against SQL injection attacks. The paper concludes that SQL injection attacks continue to be a significant security threat to web applications, and it is essential for organizations to implement effective prevention and detection methods to secure their web applications against SQL injection attacks.

show abstract

Section: Stored Proceduresmentioning

confidence: 99%