Sqa Enthusiast, profile picture
Uploaded bySqa Enthusiast
PPTX, PDF508 views

The impact of sqli (sql injection)

Ashish Gharti and Bijay Limbu Senihang are founders of Nep Security and IT security researchers who consult for Entrust Solution Nepal. SQL injection occurs when an attacker can influence SQL queries an application passes to a database, potentially allowing data leakage, site defacement, malware infection, or spear phishing. Defenses include addslashes(), mysql_real_escape_string(), is_numeric(), sprintf(), and htmlentities().

Embed presentation

Download to read offline
BY:- Ashish Gharti Bijay Limbu Senihang
 Founder of Nep Security www.nepsecurity.org www.facebook.com/groups/nepsec  IT Security Researcher  Information Security Consultant at Entrust Solution Nepal.
 The vulnerability that results when you give an attacker the ability to influence the Structured Query Language (SQL) queries that an application passes to a back-end database.
 Poorly Filtered Strings  Incorrect Type Handling  Signature Evasion  Filter Bypassing  Blind SQL Injection
 Data Leakage.  Embarrassment (Site Deface)  Malware Infection.  Medium for Spear Phishing.
 addslashes ()  mysql_real_escape_string()  is_numeric()  sprintf()  htmlentities($var, ENT_QUOTES)
The impact of sqli (sql injection)
The impact of sqli (sql injection)

More Related Content

PDF
SecureWV: Exploiting Web APIs
byThreatReel Podcast
 
PPTX
Security researcher
byNoumanShah20
 
PPTX
Web Application Security 101
byJannis Kirschner
 
PPTX
Ethical hacking
byPunit Goswami
 
PPTX
Yapay Zeka Güvenliği : Machine Learning & Deep Learning & Computer Vision Sec...
byCihan Özhan
 
PPTX
Ethical Hacking
byMazenetsolution
 
PPT
Ethi mini1 - ethical hacking
byBeing Uniq Sonu
 
PDF
Abhilash Owk - Resume
byabhilashowk
 
SecureWV: Exploiting Web APIs
byThreatReel Podcast
 
Security researcher
byNoumanShah20
 
Web Application Security 101
byJannis Kirschner
 
Ethical hacking
byPunit Goswami
 
Yapay Zeka Güvenliği : Machine Learning & Deep Learning & Computer Vision Sec...
byCihan Özhan
 
Ethical Hacking
byMazenetsolution
 
Ethi mini1 - ethical hacking
byBeing Uniq Sonu
 
Abhilash Owk - Resume
byabhilashowk
 

What's hot

PDF
OWASP Top 10 - The Ten Most Critical Web Application Security Risks
byAll Things Open
 
PPTX
Web application Security tools
byNico Penaredondo
 
PPTX
Php security common 2011
by10n Software, LLC
 
PPTX
Ethical Hacking Presentation
byAmanUllah115928
 
PDF
What is Ethical Hacking? | Ethical Hacking for Beginners | Ethical Hacking Co...
byEdureka!
 
PPTX
Ethical hacking introduction to ethical hacking
byMissStevenson1
 
PDF
Web Application Security 101
byCybersecurity Education and Research Centre
 
PPTX
Ethical hacking
bySVishnupriya5
 
PDF
Hackers
byReyansh Vishwakarma
 
PDF
Ethical hacking
byMohammad Affan
 
DOCX
Kurapati Suresh
bySuresh Krishna
 
PPTX
Attack lecture #2 ppt
byvasanthimuniasamy
 
PPT
Ethical hacking
bykawsarahmedchoudhuryzzz
 
PDF
A5-Security misconfiguration-OWASP 2013
bySorina Chirilă
 
PPTX
Ethical Hacking
byNitheesh Adithyan
 
PPTX
Introduction ethical hacking
byVishal Kumar
 
PPT
Ethical Hacking
byMukul Agarwal
 
PPTX
Ethical hacking
byVishesh Singhal
 
PPTX
Ethical Hacking Certifications | Certified Ethical Hacker | Ethical Hacking |...
bySimplilearn
 
PPTX
What is Ethical Hacking?
byDignitas Digital Pvt. Ltd.
 
OWASP Top 10 - The Ten Most Critical Web Application Security Risks
byAll Things Open
 
Web application Security tools
byNico Penaredondo
 
Php security common 2011
by10n Software, LLC
 
Ethical Hacking Presentation
byAmanUllah115928
 
What is Ethical Hacking? | Ethical Hacking for Beginners | Ethical Hacking Co...
byEdureka!
 
Ethical hacking introduction to ethical hacking
byMissStevenson1
 
Web Application Security 101
byCybersecurity Education and Research Centre
 
Ethical hacking
bySVishnupriya5
 
Hackers
byReyansh Vishwakarma
 
Ethical hacking
byMohammad Affan
 
Kurapati Suresh
bySuresh Krishna
 
Attack lecture #2 ppt
byvasanthimuniasamy
 
Ethical hacking
bykawsarahmedchoudhuryzzz
 
A5-Security misconfiguration-OWASP 2013
bySorina Chirilă
 
Ethical Hacking
byNitheesh Adithyan
 
Introduction ethical hacking
byVishal Kumar
 
Ethical Hacking
byMukul Agarwal
 
Ethical hacking
byVishesh Singhal
 
Ethical Hacking Certifications | Certified Ethical Hacker | Ethical Hacking |...
bySimplilearn
 
What is Ethical Hacking?
byDignitas Digital Pvt. Ltd.
 

Viewers also liked

PDF
Resumen de referencias (6)
byEsteban Garzon
 
PPTX
Presentation on Web Attacks
byVivek Sinha Anurag
 
PPTX
Burp plugin development for java n00bs (44 con)
byMarc Wickenden
 
PPTX
Tấn công sql injection sử dụng câu lệnh select union
byNguyễn Danh Thanh
 
PDF
Presentation on Domain Name System
byChinmay Joshi
 
PPTX
Internet Banking
bysnehateddy
 
Resumen de referencias (6)
byEsteban Garzon
 
Presentation on Web Attacks
byVivek Sinha Anurag
 
Burp plugin development for java n00bs (44 con)
byMarc Wickenden
 
Tấn công sql injection sử dụng câu lệnh select union
byNguyễn Danh Thanh
 
Presentation on Domain Name System
byChinmay Joshi
 
Internet Banking
bysnehateddy
 

Recently uploaded

PPTX
Screening and Selecting Studies for Systematic Review Dr Reginald Quansah
bySystematic Reviews Network (SRN)
 
PDF
Past Memories and a New World: Photographs of Stoke Newington from the 70s, 8...
byHistory of Stoke Newington
 
PDF
AI Workflows and Workflow Rhetoric - by Ms. Oceana Wong
byagenticroom
 
PPTX
Prelims - History and Geography Quiz - Around the World in 80 Questions - IITK
byAditya Padhi
 
PDF
Deep Research and Analysis - by Ms. Oceana Wong
byagenticroom
 
PPTX
Quarter 3 lesson 2 of English Grade 8.pptx
byMamGamino
 
PDF
Cattolica University - Lab Generative and Agentic AI - Mario Bencivinni
byMario Bencivinni
 
PDF
LH_Lecture Note on Spices , AI And Importance in Human Life.pdf
bybisensharad
 
PPTX
Anatomy of the eyeball An overviews.pptx
byMushahidRaza8
 
PDF
Digital Electronics – Registers and Their Applications
byGS Virdi
 
PDF
Conferencia de Abertura_Virgilio Almeida.pdf
byGrupo Tordesillas
 
PPTX
A Presentation of PMES 2025-2028 with Salient features.pptx
byRoyPintor2
 
PDF
Integrated Circuits: Lithography Techniques - Fundamentals and Advanced Metho...
byGS Virdi
 
PDF
বাংলাদেশ অর্থনৈতিক সমীক্ষা - ২০২৫ with Bookmark.pdf
bytanbircox UJS App
 
PPTX
G-Protein-Coupled Receptors (GPCRs): Structure, Mechanism, and Functions
byAnoja Kurian
 
PDF
Agentic AI and AI Agents 20251121.pdf - by Ms. Oceana Wong
byagenticroom
 
PDF
Risk Management and Regulatory Compliance - by Ms. Oceana Wong
byagenticroom
 
PPTX
Masterclass on Cybercrime, Scams & Safety Hacks.pptx
bykalkidirwhytap
 
PDF
*Unit-II A (Elements of Communication & Communication Style Matrix)
bySayyadTarannum
 
PPTX
LYMPHATIC SYSTEM.pptx it includes lymph, lymph nodes, bone marrow, spleen
byReena Yadav
 
Screening and Selecting Studies for Systematic Review Dr Reginald Quansah
bySystematic Reviews Network (SRN)
 
Past Memories and a New World: Photographs of Stoke Newington from the 70s, 8...
byHistory of Stoke Newington
 
AI Workflows and Workflow Rhetoric - by Ms. Oceana Wong
byagenticroom
 
Prelims - History and Geography Quiz - Around the World in 80 Questions - IITK
byAditya Padhi
 
Deep Research and Analysis - by Ms. Oceana Wong
byagenticroom
 
Quarter 3 lesson 2 of English Grade 8.pptx
byMamGamino
 
Cattolica University - Lab Generative and Agentic AI - Mario Bencivinni
byMario Bencivinni
 
LH_Lecture Note on Spices , AI And Importance in Human Life.pdf
bybisensharad
 
Anatomy of the eyeball An overviews.pptx
byMushahidRaza8
 
Digital Electronics – Registers and Their Applications
byGS Virdi
 
Conferencia de Abertura_Virgilio Almeida.pdf
byGrupo Tordesillas
 
A Presentation of PMES 2025-2028 with Salient features.pptx
byRoyPintor2
 
Integrated Circuits: Lithography Techniques - Fundamentals and Advanced Metho...
byGS Virdi
 
বাংলাদেশ অর্থনৈতিক সমীক্ষা - ২০২৫ with Bookmark.pdf
bytanbircox UJS App
 
G-Protein-Coupled Receptors (GPCRs): Structure, Mechanism, and Functions
byAnoja Kurian
 
Agentic AI and AI Agents 20251121.pdf - by Ms. Oceana Wong
byagenticroom
 
Risk Management and Regulatory Compliance - by Ms. Oceana Wong
byagenticroom
 
Masterclass on Cybercrime, Scams & Safety Hacks.pptx
bykalkidirwhytap
 
*Unit-II A (Elements of Communication & Communication Style Matrix)
bySayyadTarannum
 
LYMPHATIC SYSTEM.pptx it includes lymph, lymph nodes, bone marrow, spleen
byReena Yadav
 

The impact of sqli (sql injection)

  • 1.
  • 2.
     Founder ofNep Security www.nepsecurity.org www.facebook.com/groups/nepsec  IT Security Researcher  Information Security Consultant at Entrust Solution Nepal.
  • 3.
     The vulnerabilitythat results when you give an attacker the ability to influence the Structured Query Language (SQL) queries that an application passes to a back-end database.
  • 4.
     Poorly FilteredStrings  Incorrect Type Handling  Signature Evasion  Filter Bypassing  Blind SQL Injection
  • 5.
     Data Leakage. Embarrassment (Site Deface)  Malware Infection.  Medium for Spear Phishing.
  • 7.
     addslashes () mysql_real_escape_string()  is_numeric()  sprintf()  htmlentities($var, ENT_QUOTES)