Open AccessUsing Flask for SQLIA Detection and Protection
Author(s) -
Ann Ablahd,
Suhair Dawwod
Publication year - 2020
Publication title -
mağallaẗ tikrīt li-l-ʻulūm al-handasiyyaẗ/tikrit journal of engineering sciences
Language(s) - English
Resource type - Journals
eISSN - 2312-7589
pISSN - 1813-162X
DOI - 10.25130/tjes.27.2.01
Subject(s) - sql injection , computer science , sql , python (programming language) , web application security , web application , world wide web , cross site scripting , database , web page , web development , computer security , query by example , operating system , web search query , search engine
At present the web applications are used for most of the life activities, these applications are affected by an attack called (Structure Query Language Injection Attack) SQLIA due to the vulnerabilities of the web application. The vulnerabilities of the web application are increased because most of application developers do not care to security in designing.SQL injection is a common attack that infects a web application. The attacker adds (Structured Query Language) SQL code to web page for accessing and changing victim databases.The vital step in securing the database and detecting such an attack in web apps is preparing a tool. Many researchers propose different ways for detection and prevention of such as an attack. In this paper a tool it proposed using a powerful micro-framework web application designer called Flask in Python 3.7 to detect and prevent such attacks. The proposed system is called SQLIAD. SQLIAD analyzed a web application on-line.