Data Harvesting SQL injections

Data Harvesting SQL injections are a way of attacking a data driven SQL based application, and tricking it into sending the attacker data from the database. During this type of attack the database engine is tricked into running extra commands that are usually added on to legitimate SQL queries and stored procedures. This extra code harvests data from the database and sends it to the attacker. The extra SQL commands are usually added to a query sent from a client application that needs to receive data. Usually a compromised web browser application. See: OWASP Top Ten

Talk to Us!

Do you have application delivery questions? Our engineers would love to help!

Schedule a Call
Follow Kemp
Load Balancing
Security
Load Balancer Resources
LoadMaster
Resources
About Us
Progress Software Logo

Kemp is part of the Progress product portfolio. Progress is the leading provider of application development and digital experience technologies.

Copyright © 2025 Progress Software Corporation and/or its subsidiaries or affiliates. All Rights Reserved.

Progress and certain product names used herein are trademarks or registered trademarks of Progress Software Corporation and/or one of its subsidiaries or affiliates in the U.S. and/or other countries. See Trademarks for appropriate markings.

Do Not Sell or Share My Personal Information

Powered by Progress Sitefinity