RULE(RULE ID:334880)

Rule General Information
Release Date: 2021-12-20
Rule Name: SQL Injection Detection - Suspicious Query Statement 2
Severity:
CVE ID:
Rule Protection Details
Description: SQL injection vulnerability is caused by the web application's lack of validation of user input. Attackers submit sql statement to change the execution logic of background sql query, so as to obtain sensitive information or upload webshell.
Impact: Through SQL injection attacks, an attacker can inject any SQL commands to view or modify the database of the target system.
Affected OS: Windows, Linux, Others
Reference:
Solutions
1. Filter and escape the data entered by users to ensure that the input does not contain malicious SQL code. 2. use parameterized queries or precompiled statements to avoid directly splicing user input data into SQL statements. 3, ensure that the application connects to the database with the principle of least permission, avoid using the database account with too high permission to perform unnecessary operations.