Talk:SQL injection

This is the talk page for discussing improvements to the SQL injection article.
This is not a forum for general discussion of the subject of the article.

Add new text under old text.
New to Wikipedia? Welcome! Learn to edit; get help.

Start a new topic

Article policies

Find sources: Google (books · news · scholar · free images · WP refs) · FENS · JSTOR · TWL

Archives: 1

Computer security: Computing High‑importance

This article is within the scope of WikiProject Computer security, a collaborative effort to improve the coverage of computer security on Wikipedia. If you would like to participate, please visit the project page, where you can join the discussion and see a list of open tasks.Computer securityWikipedia:WikiProject Computer securityTemplate:WikiProject Computer securityComputer security

High

This article has been rated as High-importance on the project's importance scale.

This article is supported by WikiProject Computing (assessed as High-importance).

Things you can help WikiProject Computer security with:

Article alerts are available, updated by AAlertBot. More information...

Review importance and quality of existing articles
Identify categories related to Computer Security
Tag related articles
Identify articles for creation (see also: Article requests)
Identify articles for improvement
Create the Project Navigation Box including lists of adopted articles, requested articles, reviewed articles, etc.
Find editors who have shown interest in this subject and ask them to take a look here.

Databases (inactive)

This article is within the scope of WikiProject Databases, a project which is currently considered to be inactive.DatabasesWikipedia:WikiProject DatabasesTemplate:WikiProject DatabasesDatabases

On 26 May 2026, it was proposed that this article be moved from SQL injection to SQL injection attack. The result of the discussion was not moved.

There seems to be an example missing in the Mitigations > Escaping subsection

Nothing comes after the sentence 'the following example parameterizes a SQL query by escaping username and password parameters:' Vladmashk (talk) 13:12, 30 August 2024 (UTC)[reply]

This edit removed it. I've undone that edit, so it's back now. -- WOSlinker (talk) 14:39, 30 August 2024 (UTC)[reply]

Substantial changes

I took the liberty to make some changes, which, I believe, make the article more consistent. Being inexperienced Wikipedia contributor, I am not sure if my contributions violate some regulations. If so, please do not revert them in bulk, or at least don't do that without a discussion, in which I would get a chance to defend the changes I made or learn how to improve them up to Wikipedia standards. Thank you. 95.24.174.50 (talk) 12:01, 13 December 2024 (UTC)[reply]

Move to SQL injection attack?

Requested move 26 May 2026

The following is a closed discussion of a requested move. Please do not modify it. Subsequent comments should be made in a new section on the talk page. Editors desiring to contest the closing decision should consider a move review after discussing it on the closer's talk page. No further edits should be made to this discussion.

The result of the move request was: not moved. (closed by non-admin page mover) Jeffrey34555 (talk) 06:56, 2 June 2026 (UTC)[reply]

SQL injection → SQL injection attackSQL injection attack – A lot of the other types of computer hacking techniques are referred to as "attacks" or "hacks" such as Denial-of-service attack, WannaCry ransomware attack, or Viasat hack. Also, SQL injection is only used in the context of an attack. VidanaliK (talk to me) (contributions) 16:14, 26 May 2026 (UTC)[reply]

Oppose Per WP:CONCISE and WP:COMMONNAME. There is no need to add the additional explanatory "attack" to the name, that is explained within the article quickly. ᴢxᴄᴠʙɴᴍ (ᴛ) 05:13, 27 May 2026 (UTC)[reply]
Oppose: per nom as it is already mentioned in the article. ~ŤheŴubṂachine-840≈ ● ✒️ 09:35, 27 May 2026 (UTC)[reply]
Comment I would point out that ransomware and Social_engineering_(security), Trojan_horse_(computing) and phishing avoid the suggested pattern. Joe (talk) 16:54, 27 May 2026 (UTC)[reply]

Oppose The article is only about SQL injection. If "attack" is added, the reader would expect a real world incident or example of a SQL injection attack. Also per WP:CONCISE.

Welovecontributors! [talk] 02:00, 2 June 2026 (UTC)[reply]

The discussion above is closed. Please do not modify it. Subsequent comments should be made on the appropriate discussion page. No further edits should be made to this discussion.