You probably already read about SQL-Injection in security journals. This attack is based on dynamically crafting SQL queries. The effects of SQL injection starts .