January 01, 2018

Code injection attack

❑ Code injection attack : It is attack that misuses the system by inserting exploit code.

❑ Type of code injection
TypeSynopsisLearn more
SQL injectionThe injection using SQL query.
XSS(Cross Site Scripting)The injection using HTML script.
Command injection
(=Sell injection)
The injection using Shell command.Link
CSV injection
(=Formula injection)
The injection using CSV file.
Custom special character injectionThe injection using special charater/reserved word.
  * Signal etc.
Function injectionThe injection using function name.
Log injectionThe injection using log file.
Resource injectionThe Injection using resource identifier.
  * IP address, port number, file name etc.
SSI(Server-Side Includes) injectionThe injection using SSI on a web application.
XPATH injectionThe injection using XPath query.
XXE(XML External Entity) injectionThe injection using XML external entity.
XML Cross Site ScriptingThe injection using XML tag on XML file.
LDAP injectionThe injection using LDAP query.