SQL Injection uses malicious SQL code for backend database
manipulation to access information that was not intended to be displayed.
This attack could be stopped by 2 different ways.
Those ways are top writing dynamic queries with string concatenation or
prevent malicious SQL input from being included in executed queries. An example of an injection attack is an attacker successfully
bypassing authentication on a website by injecting a SQL query into the username field, allowing them to log in as an administrator.
