SQL Injection is a well-known technique used to attack SQL-based applications. In this article, we’ll focus on examples showing how you could exploit database vulnerabilities using this technique, while in the next article we’ll talk about ways how you can protect your application from such attacks.

Data Model

In this article, we’ll use the same data model we’re using throughout this series, so there were no changes in the structure or data of tables, since last time.

The only thing we’ll do is add some new tables to prove we can do it using SQL injection, as well as delete these tables.

#sql commands #t-sql #sql #sql injection