loading
loading
A security bug where attacker-controlled input changes a database query.
SQL injection can leak, delete, or modify data. Avoid it with parameterized queries, ORM safeguards, input validation, and least-privilege database accounts.
Plainly
Think of SQL Injection as the lock and rules that keep people and data safe. A security bug where attacker-controlled input changes a database query.
In practice
Use it when a workflow touches secrets, permissions, user data, payments, or untrusted input. In practice, define the owner, input, output, and failure mode before you rely on it.