SQL Injection

---

SQL Injection is a type of application attack which consists of inserting a SQL query via input data to extract information that is not intended to display from the database. It happens when a developer carelessly forgets to limit the type of inputs.

To-dos

1. Build a very basic database and python rest api with sql alchemy in heroku.
2. Embed an input form to extract data from rest api.
3. In rest api, do not restrict the type of input.

References

---