SQL Injection Vulnerabilities

The cluster centers on discussions of SQL injection attacks and vulnerabilities in software, with commenters highlighting classic flaws, expressing surprise at their persistence, and referencing examples like error messages or exploits.

➡️ Stable 0.8x Security

2,971

Comments

Years Active

Top Authors

#2631

Topic ID

Activity Over Time

2007

2008

2009

2010

2011

251

2012

182

2013

283

2014

174

2015

155

2016

178

2017

139

2018

125

2019

110

2020

162

2021

242

2022

134

2023

195

2024

179

2025

246

2026

Top Contributors

tptacek (92) simonw (15) orf (11) krapp (11) ceejayoz (10)

Keywords

e.g JS index.php lmgtfy.com TABLE SQL GET UPDATE DELETE POST sql injection injection sql query attacks vulnerable schema vulnerabilities pii attack

Sample Comments

jmvoodoo • May 5, 2024 • View on HN

Tell me you're vulnerable to SQL injection without telling me you're vulnerable to SQL injection.

thomasptacek • Sep 17, 2007 • View on HN

Consult the Wikipedia on "SQL Injection" attacks.

rng_civ • Jun 16, 2023 • View on HN

Nope, just a classic SQL injection attack on software used by a lot of people...

Areading314 • Jul 11, 2022 • View on HN

This is a classic SQL injection bug/security flaw

justinclift • Jan 29, 2025 • View on HN

Pity about the direct injection SQL vulnerabilities though?

chaps • May 13, 2024 • View on HN

Maybe don't shout out to the world that you're vulnerable to sql injection?

aero142 • Jun 16, 2011 • View on HN

Seriously?http://lmgtfy.com/?q=http%3A%2F%2Fen.wikipedia.org%2Fwiki%2F...

awj • Nov 11, 2011 • View on HN

This could be the result of sql injection or some other application-level attack.

mickael-kerjean • May 17, 2022 • View on HN

This is wild and hard to believe nobody has found a way to do some sql injection from there

Pxtl • Mar 27, 2016 • View on HN

Hah, a SQL error. SQL injection vulnerable?