SQL Injection is used by hackers to steal data from online businesses’ and organizations’ websites. This web application vulnerability is typically found in web applications which do not validate the user’s input. As a result, a malicious user can inject SQL statements through the website and into the database to have them executed.
Read more here – https://www.mavitunasecurity.com/sql-injection/