sql injection - Tagged - Security Boulevard
CWE-89

CWE-89

CWE-89: Improper Neutralization of Special Elements used in an SQL Command (‘SQL Injection’)SQL injection occurs when an end-user leverages the client-side interface to provide input that is then used as part of ...
web application security banner

How to Prevent Bot-Driven SQL Injection Attacks?

One of the most common attack types, SQL Injection attacks (SQLi attacks) have far-reaching business impacts. A successful injection attack of this kind could lead to exposure of sensitive information,. The post ...
web application security banner

SQLite Vulnerability May Be Putting Your Applications at Risk

Discovered first by Tencent’s security researchers (belonging to the Blade Team) in 2018, SQLite Vulnerability is continuing to expose millions of applications, software, IoT devices, and so on to the. The post ...
Easy Reporting Image 1

A Tip For Easy SQL-based Big Data Analysis: Use a Temporary Dataset

Every once in a while we’re required to analyze big data on a wide time range. Here’s a common example: “Can you analyze what happened during 2020? And don’t forget to compare ...
Magento 2 PHP Credit Card Skimmer Saves to JPG

Magento 2 PHP Credit Card Skimmer Saves to JPG

Bad actors often leverage creative techniques to conceal malicious behaviour and harvest sensitive information from ecommerce websites. A recent investigation for a compromised Magento 2 website revealed a malicious injection that was ...

Protecting Your Data from Cyber Extortion: Lessons from the Latest Mega-hack

At the end of last year, enterprise firewall company Accellion was the victim of a two-phase SQL injection attack that resulted in significant sensitive data breaches over the last number of months ...
Vulnerabilities data

Despite COVID-19 pandemic, Imperva reports number of vulnerabilities decreased in 2020

Imperva’s report, The State of Vulnerabilities in 2020 has revealed that unlike in previous years, researchers observed a fall in the number of vulnerabilities last year, even as businesses were compelled to ...
Over one million WordPress sites receive forced update to security plugin after severe vulnerability discovered

Over one million WordPress sites receive forced update to security plugin after severe vulnerability discovered

Loginizer, a popular plugin for protecting WordPress blogs from brute force attacks, has been found to contain its own severe vulnerabilities that could be exploited by hackers. The flaw, discovered by vulnerability ...
What Is SQL Injection?

SQL Injection Attack: What It Is & How to Protect Your Business

Web-applications attacks, including SQL injection attacks, more than doubled in 2019, according to data from SonicWall Taking into account the trends for more and more businesses going online, the number... The post ...
Duplicated Vulnerabilities in WordPress Plugins

Duplicated Vulnerabilities in WordPress Plugins

During a recent plugin audit, we noticed a weird pattern among many plugins responsible for performing a specific task: Duplicating a page or a post. With a bit of research, we came ...