Publication Details
Kompromitace dat pomocí SQL Injection, část I.
ANTAL Lukáš, BARABAS Maroš and HANÁČEK Petr. Kompromitace dat pomocí SQL Injection, část I. DSM Data Security Management, vol. 18, no. 1, 2014, pp. 36-39. ISSN 1211-8737.
English title
Data compromise by SQL Injection, part I.
Type
journal article
Language
czech
Authors
Antal Lukáš, Ing. (DITS FIT BUT)
Barabas Maroš, Ing., Ph.D. (DITS FIT BUT)
Hanáček Petr, doc. Dr. Ing. (DITS FIT BUT)
Barabas Maroš, Ing., Ph.D. (DITS FIT BUT)
Hanáček Petr, doc. Dr. Ing. (DITS FIT BUT)
Keywords
attack, compromise, injection, OWASP, SQL, validation, web
Abstract
SQL Injection vulnerability (SQL injection or abbreviation SQLi) has been known since the first web information systems connected to a database. Yet even today vulnerability is often misused by attackers to steal sensitive data. The first part of this article describes the most common uses of this vulnerability for database data theft. In other articles we describe lesser known methods of attacks and defense.
Published
2014
Pages
36-39
Journal
DSM Data Security Management, vol. 18, no. 1, ISSN 1211-8737
BibTeX
@ARTICLE{FITPUB10558, author = "Luk\'{a}\v{s} Antal and Maro\v{s} Barabas and Petr Han\'{a}\v{c}ek", title = "Kompromitace dat pomoc\'{i} SQL Injection, \v{c}\'{a}st I.", pages = "36--39", journal = "DSM Data Security Management", volume = 18, number = 1, year = 2014, ISSN = "1211-8737", language = "czech", url = "https://www.fit.vut.cz/research/publication/10558" }