Ars Technica

Google crawler tricked into performing SQL injection attacks using decade-old techniq

If the attacker wants to receive some output of the database he could combine an sql injection with an html injection. First inject malicious html in the databse, then the html will be put in the site ...
Dark Reading

Royal Navy Attack Stresses SQL Injection Dangers

The danger of SQL injection last week hit the limelight once again when the British Royal Navy's website was shut down temporarily in response to an attack that had Royal Navy brass wondering whether ...