SQL Injection is an attack technique by entering malicious SQL commands (queries) and can manipulate command logic to gain access to databases and other sensitive information. The main aim of this attack is to exploit the victim's database to reveal personal information about web applications such as passwords, usernames, secret keys and so on. There are two objectives in this study, among othe…