mathan_vel

 Profile Answers by mathan_vel Questions by mathan_vel

• Dec 18th, 2008

 

Normally it is know as SQL Injection. Passing SQL queries in the Addreess bar with the? intend to break out the system. This is to check the site vulnerability. You may think while we doing the SQL injection, how we will find out the site is vulnerable or not.
While passing this SQL injection. if we found any of this below means its be a bug
* should not display the records(index.asp?--Select * from sales). it should not display the sales record in the front end page
*should not show any Database name
* should not show any table name
* should not show any column name
* should not show any constraints(Primary key/foregin key names)

In real world, Hackers can enter in to the site by passing SQL injection and do according to their needs. if any above issue they got they can easily enter in to the site and hack it.

srinivasulub1981

 Profile Answers by srinivasulub1981 Questions by srinivasulub1981

• Feb 27th, 2009

 

I think it's same as SQL injection and I'm testing this in my project as part
of Security testing.

SQL injection is a code injection technique that exploits a security defects
occurring in the database layer of an application. The vulnerability is present
when user input is either incorrectly filtered SQL statements or user input is
not strongly typed and thereby unexpectedly executed. It is an instance of a
more general class of vulnerabilities that can occur whenever one programming or
scripting language is embedded inside another. SQL injection attacks are also
known as SQL insertion attacks

How to test:

The most common way to detect the potential of a SQL Injection attack:

1. Identify entry points that collect user input such as text boxes, query
string parameters, etc.

2. Insert the single quote character (') as an input and submit the request.

3. Identify whether an exception/error message was generated relating to SQL
(e.g., .NET Framework SQL Exception).

Srinivas