Introduction to “SQL”

SQL stands for Structured Query Language, it is mostly called S.Q.L or Sequel. SQL is a domain-specific language which means that it is a language that‘s structured to communicate with relational databases. SQL language is used to modify, update, or retrieve data from relatational databases. It changes slightly by organizations you work for in matters of its syntaxes.

What is SQL Injection (SQLi)?

SQL injection is an attack in which the attacker tricks the servers of the database into providing them with data they’re not authorized for. In most cases, when an attacker is successful into exploiting SQL injection, the attacker will have access to view, edit, or delete the data from database. This type of attack can be used to retrieve credit card information, passwords, or personal information of users. SQL injection attack can harm the company in the long-term because SQL injection can be injected for a long time period without being noticed. In this case, the attacker will have access to the data saved in the relational database.