« Back to Glossary IndexSQL injection is a type of input validation attack specific to database-driven applications where SQL code is inserted into application queries to manipulate the database.