Week 5

PostgreSQL

Relationships and Constraints

Normalization

Joins

JDBC

SQL Injection2

IoC & DI

Practice

Assignment

Back end Track

Under construction

<aside> 🚧

This page is currently under construction. Please check back later.

</aside>

Implementation plan:

  1. What is SQL injection — demo with a vulnerable query
  2. How string concatenation enables injection
  3. Real-world impact of SQL injection
  4. PreparedStatement — parameterized queries
  5. How prepared statements prevent injection
  6. Refactoring vulnerable code to use prepared statements
  7. Exercise: identify and fix SQL injection vulnerabilities

The HackYourFuture curriculum is licensed under CC BY-NC-SA 4.0

CC BY-NC-SA 4.0 Icons

*https://hackyourfuture.net/*

Found a mistake or have a suggestion? Let us know in the feedback form.