A Survey on SQL Injection Attacks, Detection and Prevention

Since the uses of Web in daily life is increasing in past 20 years and becoming trend now, almost every Web application has its own database to store important data. An attacker can get or even modify the data from database through SQL injection vulnerability, so it is one of the most serious problems in Web application security. In this paper, we present a detailed review on various types of SQL injection attacks and detection techniques based on machine learning. we also propose future expectations and possible development of countermeasures against SQL injection vulnerability at the end of the article.