Infosecurity-magazine.com

SQL injection attack leads to command execution

Thus far, SQL injection has focused on altering data within the database, rather than attacking the underlying operating system. But researcher Bernardo Damele Assumpcao Guimaraes will be upgrading ...
Dark Reading

SQL Injection Attacks Haunt Retailers

Retail and other industries that accept payment cards for transactions say the infamous SQL injection attack is either intensifying or remaining status quo. In a new Ponemon Institute report on SQL ...
Dark Reading

Nasty SQL Injection Bug in Zendesk Endangers Sensitive Customer Data

Multiple security vulnerabilities in Zendesk's Web-based customer relationship management (CRM) platform could have allowed attackers to access sensitive information from potentially any customer ...
Linux Journal

Drupageddon: SQL Injection, Database Abstraction and Hundreds of Thousands of Web Sites

Drupal is a very widely used open-source content management system. It initially was released in 2001, and recent statistics show Drupal as the third-most popular content management system, with just ...
InfoQ

Analysis and Mitigation of NoSQL Injections

A monthly overview of things you need to know as an architect or aspiring architect. Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with ...