Security News > 2020 > September > Surging CMS attacks keep SQL injections on the radar during the next normal

Surging CMS attacks keep SQL injections on the radar during the next normal
2020-09-02 05:00

In this article, we'll take a look at security vulnerabilities in the context of CMS platforms and the implications of SQL injection attacks on your website.

Web app attacks, which are commonly executed via SQL injection, are down from last year but have been trending dangerously upward since February, with 2.1 million attacks rising steadily to 4.9 million attacks in June.

In an SQL injection attack, the attacker sends SQL input into an entry field for execution or to gain access to a web application without the owner's permission or knowledge.

Most attackers use SQL injections to exploit known security vulnerabilities in plugins and applications like PHP. Here's an example of how an SQL injection works.

Website owners can successfully prevent or minimize the impact of such attacks by proactively fixing vulnerabilities in their CMS. There are several measures you can take to prevent SQL injection attacks but they should be implemented as part of a cohesive strategy.


News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/AiB5MYA1taQ/