RULE(RULE ID:309810)

Rule General Information
Release Date: 2014-10-14
Rule Name: SQL Injection Detection - Blind Injection 6
Severity:
CVE ID:
Rule Protection Details
Description: SQL injection vulnerability is caused by the web application's lack of validation of user input. Attackers submit sql statement to change the execution logic of background sql query, so as to obtain sensitive information or upload webshell.This rule is used to detect suspicious behavior in HTTP requests that use various methods to attempt to obtain database information.
Impact: Through SQL injection attacks, an attacker can inject any SQL commands to view or modify the database of the target system.
Affected OS: Windows
Reference:
Solutions
1. Filter and escape the data entered by users to ensure that the input does not contain malicious SQL code. 2. use parameterized queries or precompiled statements to avoid directly splicing user input data into SQL statements. 3, ensure that the application connects to the database with the principle of least permission, avoid using the database account with too high permission to perform unnecessary operations.