1) Injection A code injection happens when an attacker sends invalid data to the web application with the intention to make it do something that the application was not programmed to do. For example, an attacker could enter SQL database code into a form that expects a plaintext username. If that form…
