Research on Detection and Prevention Technologies for SQL Injection Vulnerability

As one of the most important security risks in Web applications, SQL Injection Vulnerabilities causes great damage and attracts wide attention in both academic and industry field. This paper first gives a systematic introduction of the reasons for SQL Injection Vulnerabilities, injection technologies, its classification and threats; then analyzes and compares the pros and cons of technologies for SQL Injection Vulnerability detection; after summarizing many prevention methods for SQL Injection Attack in three different levels, a conclusion is reached and future research directions are pointed out at the same time.