English
Related papers

Related papers: Detecting and Mitigating SQL Injection Vulnerabili…

200 papers

In today's world, Web applications play a very important role in individual life as well as in any country's development. Web applications have gone through a very rapid growth in the recent years and their adoption is moving faster than…

Cryptography and Security · Computer Science 2013-06-18 Diallo Abdoulaye Kindy , Al-Sakib Khan Pathan

The rapid proliferation of network applications has led to a significant increase in network attacks. According to the OWASP Top 10 Projects report released in 2021, injection attacks rank among the top three vulnerabilities in software…

Software Engineering · Computer Science 2025-09-16 Guan-Yan Yang , Farn Wang , You-Zong Gu , Ya-Wen Teng , Kuo-Hui Yeh , Ping-Hsueh Ho , Wei-Ling Wen

Security is unarguably the most serious concern for Web applications, to which SQL injection (SQLi) attack is one of the most devastating attacks. Automatically testing SQLi vulnerabilities is of ultimate importance, yet is unfortunately…

Software Engineering · Computer Science 2020-05-26 Muyang Liu , Ke Li , Tao Chen

SQL injection (SQLi) attacks pose a significant threat to the security of web applications. Existing approaches do not support object-oriented programming that renders these approaches unable to protect the real-world web apps such as…

Cryptography and Security · Computer Science 2020-07-14 Rasoul Jahanshahi , Adam Doupé , Manuel Egele

We present a formal approach that exploits attacks related to SQL Injection (SQLi) searching for security flaws in a web application. We give a formal representation of web applications and databases, and show that our formalization…

Cryptography and Security · Computer Science 2016-08-11 Federico De Meo , Marco Rocchetto , Luca Viganò

SQL Injection is one of the vulnerabilities in OWASPs Top Ten List for Web Based Application Exploitation.These types of attacks takes place on Dynamic Web applications as they interact with the databases for the various operations.Current…

Cryptography and Security · Computer Science 2016-05-11 Jai Puneet Singh

With the changing demographics of globalization, the emergence and prevalence of web application have acquired a central and pivotal role in the domains of technology and advancements. It thus becomes imperative to probe deeply into the…

Networking and Internet Architecture · Computer Science 2012-07-09 Neha Patwari , Parvati Bhurani

SQL Injection (SQLi) continues to pose a significant threat to the security of web applications, enabling attackers to manipulate databases and access sensitive information without authorisation. Although advancements have been made in…

Cryptography and Security · Computer Science 2025-02-10 Naga Sai Dasari , Atta Badii , Armin Moin , Ahmed Ashlam

Almost 50 years after the invention of SQL, injection attacks are still top-tier vulnerabilities of today's ICT systems. Consequently, SQLi detection is still an active area of research, where the most recent works incorporate machine…

Cryptography and Security · Computer Science 2023-04-25 Balazs Pejo , Nikolett Kapui

In this era of internet, E-Business and e-commerce applications are using Databases as their integral part. These Databases irrespective of the technology used are vulnerable to SQL injection attacks. These Attacks are considered very…

Cryptography and Security · Computer Science 2020-09-30 Israr Ali , Syed Hasan Adil , Mansoor Ebrahim

Web applications are becoming an essential part of our everyday lives. Many of our activities are dependent on the functionality and security of these applications. As the scale of these applications grows, injection vulnerabilities such as…

Software Engineering · Computer Science 2010-09-21 Raymond Mui , Phyllis Frankl

Detecting SQL Injection (SQLi) attacks is crucial for web-based data center security, but it is challenging to balance accuracy and computational efficiency, especially in high-speed networks. Traditional methods struggle with this balance,…

Cryptography and Security · Computer Science 2024-10-28 Kasim Tasdemir , Rafiullah Khan , Fahad Siddiqui , Sakir Sezer , Fatih Kurugollu , Sena Busra Yengec-Tasdemir , Alperen Bolat

With the increasing importance of the internet in our day to day life, data security in web application has become very crucial. Ever increasing on line and real time transaction services have led to manifold rise in the problems associated…

Databases · Computer Science 2013-11-27 Vrushali Randhe , Archana Chougule , Debajyoti Mukhopadhyay

Large Language Models (LLMs) have found widespread applications in various domains, including web applications, where they facilitate human interaction via chatbots with natural language interfaces. Internally, aided by an LLM-integration…

Cryptography and Security · Computer Science 2025-01-29 Rodrigo Pedro , Daniel Castro , Paulo Carreira , Nuno Santos

Software weaknesses that create attack surfaces for adversarial exploits, such as lateral SQL injection (LSQLi) attacks, are usually introduced during the design phase of software development. Security design patterns are sometimes applied…

Cryptography and Security · Computer Science 2022-10-25 Chidera Biringa , Gökhan Kul

SQL injection attacks, a class of injection flaw in which specially crafted input strings leads to illegal queries to databases, are one of the topmost threats to web applications. A Number of research prototypes and commercial products…

Databases · Computer Science 2015-04-28 Swapnil Kharche , Jagdish patil , Kanchan Gohad , Bharti Ambetkar

In this paper, we propose a formalization of the process of exploitation of SQL injection vulnerabilities. We consider a simplification of the dynamics of SQL injection attacks by casting this problem as a security capture-the-flag…

Cryptography and Security · Computer Science 2021-05-25 Laszlo Erdodi , Åvald Åslaugson Sommervoll , Fabio Massimo Zennaro

Data mining and information extraction from data is a field that has gained relevance in recent years thanks to techniques based on artificial intelligence and use of machine and deep learning. The main aim of the present work is the…

Cryptography and Security · Computer Science 2022-09-15 M Lodeiro-Santiago , C Caballero-Gil , P Caballero-Gil

Large language models (LLMs) have shown state-of-the-art results in translating natural language questions into SQL queries (Text-to-SQL), a long-standing challenge within the database community. However, security concerns remain largely…

Cryptography and Security · Computer Science 2025-09-09 Meiyu Lin , Haichuan Zhang , Jiale Lao , Renyuan Li , Yuanchun Zhou , Carl Yang , Yang Cao , Mingjie Tang

Web applications require access to the file-system for many different tasks. When analyzing the security of a web application, secu- rity analysts should thus consider the impact that file-system operations have on the security of the whole…

Cryptography and Security · Computer Science 2017-05-11 Federico De Meo , Luca Viganò
‹ Prev 1 2 3 10 Next ›