Injection10:55 with Jared Smith
Injection flaws occur when untrusted data is sent to an interpreter as part of a command or query. The attacker’s hostile data can trick the interpreter into executing unintended commands or accessing data without proper authorization.
- Command Injection: the ability to exploit places in a web app that accept user input by inserting malicious or malformed data to cause the system to operate in a non-standard way (at least non-standard according to what the developer intended).
- SQL: Structured Query Language, the standard for SQL databases to abide by when querying for data stored in the system, adding data to the system, updating data, and deleting data.
You need to sign up for Treehouse in order to download course files.Sign up