ABSTRACT
With the development of B/S mode of application, a considerable number of programmers are writing code, with no input data to judge the legality of the user, so the application is under security risk. By submitting elaborated database query code and get a reply, the hacker can get the data they wanted. This is SQL Injection.SQL injection is a sensitive database information which may have been illegally viewed or deleted, and may even make the server been controlled by hackers and become “chicken”.
