Ars Technica

Google crawler tricked into performing SQL injection attacks using decade-old techniq

If the attacker wants to receive some output of the database he could combine an sql injection with an html injection. First inject malicious html in the databse, then the html will be put in the site ...
dbta

Addressing SAP’s SQL Injection Attacks and Directory Traversal Vulnerabilities

SAP platforms, used by 99 of the Fortune 100 companies and with over 280 million cloud subscribers worldwide, are among the most reliable business applications. As SAP administrators, your role in ...
Dark Reading

Royal Navy Attack Stresses SQL Injection Dangers

The danger of SQL injection last week hit the limelight once again when the British Royal Navy's website was shut down temporarily in response to an attack that had Royal Navy brass wondering whether ...