/alerttags/cwe-89/ Recent content in CWE-89 on ZAP Hugo en-us /docs/alerts/200000-4/ Mon, 01 Jan 0001 00:00:00 +0000 /docs/alerts/200000-4/ <p>A SQL injection attack consists of insertion or injection of a SQL query via the input data from the client to the application. A successful SQL injection exploit can read sensitive data from the database, modify database data (Insert/Update/Delete), execute administration operations on the database (such as shutdown the DBMS), recover the content of a given file present on the DBMS file system and in some cases issue commands to the operating system. SQL injection attacks are a type of injection attack, in which SQL commands are injected into data-plane input in order to affect the execution of predefined SQL commands.</p> /docs/alerts/200000-2/ Mon, 01 Jan 0001 00:00:00 +0000 /docs/alerts/200000-2/ <p>A SQL injection attack consists of insertion or injection of a SQL query via the input data from the client to the application. A successful SQL injection exploit can read sensitive data from the database, modify database data (Insert/Update/Delete), execute administration operations on the database (such as shutdown the DBMS), recover the content of a given file present on the DBMS file system and in some cases issue commands to the operating system. SQL injection attacks are a type of injection attack, in which SQL commands are injected into data-plane input in order to affect the execution of predefined SQL commands.</p> /docs/alerts/40020/ Mon, 01 Jan 0001 00:00:00 +0000 /docs/alerts/40020/ <p>SQL injection may be possible.</p> /docs/alerts/40027/ Mon, 01 Jan 0001 00:00:00 +0000 /docs/alerts/40027/ <p>SQL injection may be possible.</p> /docs/alerts/40019/ Mon, 01 Jan 0001 00:00:00 +0000 /docs/alerts/40019/ <p>SQL injection may be possible.</p> /docs/alerts/40021/ Mon, 01 Jan 0001 00:00:00 +0000 /docs/alerts/40021/ <p>SQL injection may be possible.</p> /docs/alerts/40022/ Mon, 01 Jan 0001 00:00:00 +0000 /docs/alerts/40022/ <p>SQL injection may be possible.</p> /docs/alerts/200000-3/ Mon, 01 Jan 0001 00:00:00 +0000 /docs/alerts/200000-3/ <p>A SQL injection attack consists of insertion or injection of a SQL query via the input data from the client to the application. A successful SQL injection exploit can read sensitive data from the database, modify database data (Insert/Update/Delete), execute administration operations on the database (such as shutdown the DBMS), recover the content of a given file present on the DBMS file system and in some cases issue commands to the operating system. SQL injection attacks are a type of injection attack, in which SQL commands are injected into data-plane input in order to affect the execution of predefined SQL commands.</p> /docs/alerts/200000-1/ Mon, 01 Jan 0001 00:00:00 +0000 /docs/alerts/200000-1/ <p>A SQL injection attack consists of insertion or injection of a SQL query via the input data from the client to the application. A successful SQL injection exploit can read sensitive data from the database, modify database data (Insert/Update/Delete), execute administration operations on the database (such as shutdown the DBMS), recover the content of a given file present on the DBMS file system and in some cases issue commands to the operating system. SQL injection attacks are a type of injection attack, in which SQL commands are injected into data-plane input in order to affect the execution of predefined SQL commands.</p> /docs/alerts/40024-1/ Mon, 01 Jan 0001 00:00:00 +0000 /docs/alerts/40024-1/ <p>SQL injection may be possible.</p> /docs/alerts/40024-2/ Mon, 01 Jan 0001 00:00:00 +0000 /docs/alerts/40024-2/ <p>SQL injection may be possible.</p>