Detection and Analysis of Port Scanning and SQL Injection Vulnerabilities with correlating factors in Web Applications to Enhance secure Data Transmission

Detection and Analysis of Port Scanning and SQL Injection Vulnerabilities with correlating factors in Web Applications to Enhance secure Data Transmission

연구 분야: Databases

학회: 2023 International Conference on Research Methodologies in Knowledge Management, Artificial Intelligence and Telecommunication Engineering (RMKMATE)

The increasing use of web applications has led to a rise in vulnerabilities, with SQL injection being one of the most prevalent and harmful attacks. Attackers exploit flaws in how web applications handle user input to manipulate database queries and gain unauthorized access to sensitive data or perform destructive actions. This article aims to explore the working of SQL injection attacks and highlight the role of port scanning in such attacks. By understanding the causes and mechanisms behind SQL injection, we can better comprehend the importance of proper input validation and parameter handling in securing web applications. The study reveals that web applications vulnerable to SQL injection can be exploited through port scanning to identify open or closed ports, like MySQL's default port 3306. Attracting malicious SQL code into user input fields can alter database queries and potentially compromise the application's security. SQL injection remains a significant threat to web applications due to poor input validation and inadequate handling of parameters in SQL queries. Proper security measures, such as input validation and parameterization, are crucial to mitigate the risk of SQL injection attacks and enhance overall application security.