

<strong>Paper Title</strong><br>

Study on SQL Injection-Threats, Attacks, Types, Prevention Techniques and Tools<br>

<br>


<strong>Abstract</strong><br>

SQL injection refers to a technique where an attacker can execute malicious SQL statements that control a web
application�s database. SQL injection vulnerabilities can attack any website or application that makes use of the database
server. This vulnerability is one of the oldest and most dangerous of all the web application attack. In SQL injection attack
an attacker tries to gain unauthorized access on the database which allows an attacker to spoof the identity, destroys the data
present on the system, and changes the records present on the database. The main consequences of SQL injection attack are
loss of confidentiality, loss of authentication, loss of authorization and lack of integrity. In this paper we will focus on SQL
injection, all the SQL injection attacks, its threats, and the methods used to detect and to prevent SQL injection with the SQL
queries.