Forms and Validity
SQL injection attack (SQLIA) is considered one of the top 10 web application vulnerabilities of 2007 and 2010 by the Open Web Application Security Project. The attacking vector contains five main sub-classes depending on the technical aspects of the attack's deployment:
- Classic SQLIA
- Inference SQL injection
- Interacting with SQL injection
- Database management system-specific SQLIA
- Compounded SQLIA
- SQL injection + insufficient authentication
- SQL injection + DDoS attacks
- SQL injection + DNS hijacking
- SQL injection +XSS
A complete overview of the SQL Injection classification is presented in the next figure. The Storm Worm is one representation of Compounded SQLIA.
This classification represents the state of SQLIA, respecting its evolution until 2010—further refinement is underway.
Read more about this topic: SQL Injection
Famous quotes containing the words forms and, forms and/or validity:
“Your body must become familiar with its death—in all its possible forms and degrees—as a self-evident, imminent, and emotionally neutral step on the way towards the goal you have found worthy of your life.”
—Dag Hammarskjöld (1905–1961)
“Media mystifications should not obfuscate a simple, perceivable fact; Black teenage girls do not create poverty by having babies. Quite the contrary, they have babies at such a young age precisely because they are poor—because they do not have the opportunity to acquire an education, because meaningful, well-paying jobs and creative forms of recreation are not accessible to them ... because safe, effective forms of contraception are not available to them.”
—Angela Davis (b. 1944)
“The hardiest skeptic who has seen a horse broken, a pointer trained, or has visited a menagerie or the exhibition of the Industrious Fleas, will not deny the validity of education. “A boy,” says Plato, “is the most vicious of all beasts;” and in the same spirit the old English poet Gascoigne says, “A boy is better unborn than untaught.””
—Ralph Waldo Emerson (1803–1882)