A Survey on SQL Injection Attack: Detection and Challenges

Web applications are seen to play a vital role in the individual lives and even assist in the economic development of the country. However, many security vulnerabilities have been developed which can attack the web applications. One of the most common security threats which affect the web applications is the Structured Query Language Injection (SQL Injection or SQLi) attacks. The Open Web Application Security Project (OWASP) ranked them at the top out of the 10 most effective vulnerable attacks. This attack has been used for a long time for attacking different websites and webpages, due to which the victims had to suffer severe financial loss. In this study, the researchers investigated the different methods which could be used for detecting the SQLi attacks and their limitations. Additionally, they have also highlighted the direction of research being conducted in this area.