SQL injection (SQLi) is an attack technique used to exploit security vulnerabilities in SQL databases.
With the SQLi technique, attackers can gain unauthorized access to databases and their data
, spy on them, manipulate them and take control of them with injected database commands. Attackers can use SQL injection to access data in databases for which they have no authorization, they can change data orthe user
password in the databases, createcommands
and bypass authentication.