Sorry, your browser is not compatible with this application. Please use the latest version of Google Chrome, Mozilla Firefox, Microsoft Edge or Safari.
Secure by Design Alert Eliminating SQL Injection Vulnerabilities in Software
SQL injection or SQLi vulnerabilities remain a persistent class of defect in commercial software products. Despite widespread knowledge and documentation of SQLi vulnerabilities over the past two decades, along with the availability of effective mitigations, software manufacturers have continued to develop products with this defect, which puts many customers at risk.
The Cybersecurity and Infrastructure Security Agency and the Federal Bureau of Investigation are releasing the Secure by Design Alert in response to a recent well-publicized malicious threat actor campaign that exploited SQLi defects in a managed file transfer application to target and compromise users of that application.
| Format: |
|
| Topics: | |
| Website: | Visit Publisher Website |
| Publisher: | Cybersecurity and Infrastructure Security Agency (CISA) |
| Published: | March 1, 2024 |
| License: | Public Domain |
Featured Content
Contact Publisher
Claim Content