jdbcJDBC - Statement Injection


Introduction

SQL injection is a code injection technique, used to attack data-driven applications, in which nefarious SQL statements are inserted into an entry field for execution (e.g. to dump the database contents to the attacker).

In this section we will talk about that and its relation with JDBC Statement.