SQL injection is a code injection technique that is used to attack data-driven applications, in which malicious or manipulative SQL statements are inserted into an entry field for execution.

See also: SQL Injection