Code injection (English Wikipedia)

Srinivasan, Raghunathan. "Towards More Effective Virus Detectors" (PDF). Arizona State University. Archived from the original (PDF) on 29 July 2010. Retrieved 18 September 2010. Benevolent use of code injection occurs when a user changes the behaviour of a program to meet system requirements.

blackhat.life (Global: low place; English: low place)

"Command Injection - Black Hat Library". Archived from the original on 27 February 2015. Retrieved 27 February 2015.

doi.org (Global: 2^nd place; English: 2^nd place)

Noman, Haitham Ameen; Abu-Sharkh, Osama M. F. (January 2023). "Code Injection Attacks in Wireless-Based Internet of Things (IoT): A Comprehensive Review and Practical Implementations". Sensors. 23 (13): 6067. Bibcode:2023Senso..23.6067N. doi:10.3390/s23136067. ISSN 1424-8220. PMC 10346793. PMID 37447915.
Morales, Jose Andre; Kartaltepe, Erhan; Xu, Shouhuai; Sandhu, Ravi (2010). "Symptoms-Based Detection of Bot Processes". Computer Network Security. Lecture Notes in Computer Science. Vol. 6258. Berlin, Heidelberg: Springer. pp. 229–241. CiteSeerX 10.1.1.185.2152. doi:10.1007/978-3-642-14706-7_18. ISBN 978-3-642-14705-0. ISSN 0302-9743.
Philippaerts, Pieter; et al. (1 June 2013). "CPM: Masking Code Pointers to Prevent Code Injection Attacks" (PDF). ACM Transactions on Information and System Security. 16 (1): 1–27. doi:10.1145/2487222.2487223. ISSN 1094-9224. S2CID 10947780. Archived (PDF) from the original on 24 February 2021. Retrieved 21 October 2018.
Zhuo, Z.; Cai, T.; Zhang, X.; Lv, F. (12 March 2021). "Long short-term memory on abstract syntax tree for SQL injection detection". IET Software. 15 (2): 188–197. doi:10.1049/sfw2.12018. ISSN 1751-8806. S2CID 233582569.

fort-knox.org (Global: low place; English: low place)

Philippaerts, Pieter; et al. (1 June 2013). "CPM: Masking Code Pointers to Prevent Code Injection Attacks" (PDF). ACM Transactions on Information and System Security. 16 (1): 1–27. doi:10.1145/2487222.2487223. ISSN 1094-9224. S2CID 10947780. Archived (PDF) from the original on 24 February 2021. Retrieved 21 October 2018.

harvard.edu (Global: 18^th place; English: 17^th place)

ui.adsabs.harvard.edu

Noman, Haitham Ameen; Abu-Sharkh, Osama M. F. (January 2023). "Code Injection Attacks in Wireless-Based Internet of Things (IoT): A Comprehensive Review and Practical Implementations". Sensors. 23 (13): 6067. Bibcode:2023Senso..23.6067N. doi:10.3390/s23136067. ISSN 1424-8220. PMC 10346793. PMID 37447915.

karmainsecurity.com (Global: low place; English: low place)

"Analysis of the Joomla PHP Object Injection Vulnerability". Archived from the original on 2 March 2013. Retrieved 6 June 2014.

moertel.com (Global: low place; English: low place)

blog.moertel.com

Moertel, Tom (18 October 2006). "A type-based solution to the "strings problem": a fitting end to XSS and SQL-injection holes?". Tom Moertel's Blog. Archived from the original on 6 August 2013. Retrieved 21 October 2018.

nih.gov (Global: 4^th place; English: 4^th place)

ncbi.nlm.nih.gov

Noman, Haitham Ameen; Abu-Sharkh, Osama M. F. (January 2023). "Code Injection Attacks in Wireless-Based Internet of Things (IoT): A Comprehensive Review and Practical Implementations". Sensors. 23 (13): 6067. Bibcode:2023Senso..23.6067N. doi:10.3390/s23136067. ISSN 1424-8220. PMC 10346793. PMID 37447915.

pubmed.ncbi.nlm.nih.gov

Noman, Haitham Ameen; Abu-Sharkh, Osama M. F. (January 2023). "Code Injection Attacks in Wireless-Based Internet of Things (IoT): A Comprehensive Review and Practical Implementations". Sensors. 23 (13): 6067. Bibcode:2023Senso..23.6067N. doi:10.3390/s23136067. ISSN 1424-8220. PMC 10346793. PMID 37447915.

nist.gov (Global: 355^th place; English: 454^th place)

web.nvd.nist.gov

"NVD - Statistics Search". web.nvd.nist.gov. Archived from the original on 15 December 2023. Retrieved 9 December 2016.

oracle.com (Global: 1,514^th place; English: 1,024^th place)

docs.oracle.com

"The Java EE 6 Tutorial: Chapter 35 Using the Criteria API to Create Queries". Oracle. Archived from the original on 11 November 2013. Retrieved 19 December 2013.

owasp.org (Global: low place; English: low place)

"OWASP Top 10 2013 A1: Injection Flaws". OWASP. Archived from the original on 28 January 2016. Retrieved 19 December 2013.
"HttpOnly". OWASP. 12 November 2014. Archived from the original on 26 December 2008. Retrieved 10 December 2016.
"SQL Injection Prevention Cheat Sheet". OWASP. Archived from the original on 20 January 2012. Retrieved 10 December 2016.
"Command Injection". Archived from the original on 20 December 2013. Retrieved 19 December 2013.

php.net (Global: 4,194^th place; English: 3,676^th place)

uk3.php.net

"Unserialize function warnings". PHP.net. Archived from the original on 9 May 2015. Retrieved 6 June 2014.

portswigger.net (Global: low place; English: low place)

"Server-Side Template Injection". PortSwigger Research. 5 August 2015. Archived from the original on 22 May 2022. Retrieved 22 May 2022.

psu.edu (Global: 207^th place; English: 136^th place)

citeseerx.ist.psu.edu

Morales, Jose Andre; Kartaltepe, Erhan; Xu, Shouhuai; Sandhu, Ravi (2010). "Symptoms-Based Detection of Bot Processes". Computer Network Security. Lecture Notes in Computer Science. Vol. 6258. Berlin, Heidelberg: Springer. pp. 229–241. CiteSeerX 10.1.1.185.2152. doi:10.1007/978-3-642-14706-7_18. ISBN 978-3-642-14705-0. ISSN 0302-9743.

rafalcieslak.wordpress.com (Global: low place; English: low place)

"Dynamic linker tricks: Using LD_PRELOAD to cheat, inject features and investigate programs". Rafał Cieślak's blog. 2 April 2013. Archived from the original on 25 December 2021. Retrieved 10 December 2016.

seclists.org (Global: low place; English: low place)

Christey, Steven M. (3 May 2006). "Dynamic Evaluation Vulnerabilities in PHP applications". Full Disclosure (Mailing list). Archived from the original on 13 November 2009. Retrieved 21 October 2018.

semanticscholar.org (Global: 11^th place; English: 8^th place)

api.semanticscholar.org

Philippaerts, Pieter; et al. (1 June 2013). "CPM: Masking Code Pointers to Prevent Code Injection Attacks" (PDF). ACM Transactions on Information and System Security. 16 (1): 1–27. doi:10.1145/2487222.2487223. ISSN 1094-9224. S2CID 10947780. Archived (PDF) from the original on 24 February 2021. Retrieved 21 October 2018.
Zhuo, Z.; Cai, T.; Zhang, X.; Lv, F. (12 March 2021). "Long short-term memory on abstract syntax tree for SQL injection detection". IET Software. 15 (2): 188–197. doi:10.1049/sfw2.12018. ISSN 1751-8806. S2CID 233582569.

uiowa.edu (Global: 3,018^th place; English: 1,865^th place)

cs.uiowa.edu

Douglas W. Jones, CS:3620 Notes, Lecture 4—Shell Scripts. Archived 24 September 2024 at the Wayback Machine, Spring 2018.

upenn.edu (Global: 702^nd place; English: 520^th place)

"Top 10 Web Application Security Vulnerabilities". Penn Computing. University of Pennsylvania. Archived from the original on 24 February 2018. Retrieved 10 December 2016.

web.archive.org (Global: 1^st place; English: 1^st place)

"Top 10 Web Application Security Vulnerabilities". Penn Computing. University of Pennsylvania. Archived from the original on 24 February 2018. Retrieved 10 December 2016.
"OWASP Top 10 2013 A1: Injection Flaws". OWASP. Archived from the original on 28 January 2016. Retrieved 19 December 2013.
"NVD - Statistics Search". web.nvd.nist.gov. Archived from the original on 15 December 2023. Retrieved 9 December 2016.
Srinivasan, Raghunathan. "Towards More Effective Virus Detectors" (PDF). Arizona State University. Archived from the original (PDF) on 29 July 2010. Retrieved 18 September 2010. Benevolent use of code injection occurs when a user changes the behaviour of a program to meet system requirements.
"Dynamic linker tricks: Using LD_PRELOAD to cheat, inject features and investigate programs". Rafał Cieślak's blog. 2 April 2013. Archived from the original on 25 December 2021. Retrieved 10 December 2016.
"The Java EE 6 Tutorial: Chapter 35 Using the Criteria API to Create Queries". Oracle. Archived from the original on 11 November 2013. Retrieved 19 December 2013.
Moertel, Tom (18 October 2006). "A type-based solution to the "strings problem": a fitting end to XSS and SQL-injection holes?". Tom Moertel's Blog. Archived from the original on 6 August 2013. Retrieved 21 October 2018.
"HttpOnly". OWASP. 12 November 2014. Archived from the original on 26 December 2008. Retrieved 10 December 2016.
"SQL Injection Prevention Cheat Sheet". OWASP. Archived from the original on 20 January 2012. Retrieved 10 December 2016.
Philippaerts, Pieter; et al. (1 June 2013). "CPM: Masking Code Pointers to Prevent Code Injection Attacks" (PDF). ACM Transactions on Information and System Security. 16 (1): 1–27. doi:10.1145/2487222.2487223. ISSN 1094-9224. S2CID 10947780. Archived (PDF) from the original on 24 February 2021. Retrieved 21 October 2018.
"Server-Side Template Injection". PortSwigger Research. 5 August 2015. Archived from the original on 22 May 2022. Retrieved 22 May 2022.
Christey, Steven M. (3 May 2006). "Dynamic Evaluation Vulnerabilities in PHP applications". Full Disclosure (Mailing list). Archived from the original on 13 November 2009. Retrieved 21 October 2018.
"Unserialize function warnings". PHP.net. Archived from the original on 9 May 2015. Retrieved 6 June 2014.
"Analysis of the Joomla PHP Object Injection Vulnerability". Archived from the original on 2 March 2013. Retrieved 6 June 2014.
"Command Injection". Archived from the original on 20 December 2013. Retrieved 19 December 2013.
Douglas W. Jones, CS:3620 Notes, Lecture 4—Shell Scripts. Archived 24 September 2024 at the Wayback Machine, Spring 2018.

wiley.com (Global: 222^nd place; English: 297^th place)

onlinelibrary.wiley.com

Zhuo, Z.; Cai, T.; Zhang, X.; Lv, F. (12 March 2021). "Long short-term memory on abstract syntax tree for SQL injection detection". IET Software. 15 (2): 188–197. doi:10.1049/sfw2.12018. ISSN 1751-8806. S2CID 233582569.

worldcat.org (Global: 5^th place; English: 5^th place)

search.worldcat.org

Noman, Haitham Ameen; Abu-Sharkh, Osama M. F. (January 2023). "Code Injection Attacks in Wireless-Based Internet of Things (IoT): A Comprehensive Review and Practical Implementations". Sensors. 23 (13): 6067. Bibcode:2023Senso..23.6067N. doi:10.3390/s23136067. ISSN 1424-8220. PMC 10346793. PMID 37447915.
Morales, Jose Andre; Kartaltepe, Erhan; Xu, Shouhuai; Sandhu, Ravi (2010). "Symptoms-Based Detection of Bot Processes". Computer Network Security. Lecture Notes in Computer Science. Vol. 6258. Berlin, Heidelberg: Springer. pp. 229–241. CiteSeerX 10.1.1.185.2152. doi:10.1007/978-3-642-14706-7_18. ISBN 978-3-642-14705-0. ISSN 0302-9743.
Philippaerts, Pieter; et al. (1 June 2013). "CPM: Masking Code Pointers to Prevent Code Injection Attacks" (PDF). ACM Transactions on Information and System Security. 16 (1): 1–27. doi:10.1145/2487222.2487223. ISSN 1094-9224. S2CID 10947780. Archived (PDF) from the original on 24 February 2021. Retrieved 21 October 2018.
Zhuo, Z.; Cai, T.; Zhang, X.; Lv, F. (12 March 2021). "Long short-term memory on abstract syntax tree for SQL injection detection". IET Software. 15 (2): 188–197. doi:10.1049/sfw2.12018. ISSN 1751-8806. S2CID 233582569.
Hope, Brian; Hope, Paco; Walther, Ben (15 May 2009). Web Security Testing Cookbook. Sebastopol, CA: O'Reilly Media. p. 254. ISBN 978-0-596-51483-9. OCLC 297573828.

Code injection (English Wikipedia)

archive.org (Global: 6th place; English: 6th place)

archive.today (Global: 14th place; English: 14th place)

asu.edu (Global: 2,187th place; English: 1,500th place)

public.asu.edu

blackhat.life (Global: low place; English: low place)

doi.org (Global: 2nd place; English: 2nd place)

fort-knox.org (Global: low place; English: low place)

harvard.edu (Global: 18th place; English: 17th place)

ui.adsabs.harvard.edu

karmainsecurity.com (Global: low place; English: low place)

moertel.com (Global: low place; English: low place)

blog.moertel.com

nih.gov (Global: 4th place; English: 4th place)

ncbi.nlm.nih.gov

pubmed.ncbi.nlm.nih.gov

nist.gov (Global: 355th place; English: 454th place)

web.nvd.nist.gov

oracle.com (Global: 1,514th place; English: 1,024th place)

docs.oracle.com

owasp.org (Global: low place; English: low place)

php.net (Global: 4,194th place; English: 3,676th place)

uk3.php.net

portswigger.net (Global: low place; English: low place)

psu.edu (Global: 207th place; English: 136th place)

citeseerx.ist.psu.edu

rafalcieslak.wordpress.com (Global: low place; English: low place)

seclists.org (Global: low place; English: low place)

semanticscholar.org (Global: 11th place; English: 8th place)

api.semanticscholar.org

uiowa.edu (Global: 3,018th place; English: 1,865th place)

cs.uiowa.edu

upenn.edu (Global: 702nd place; English: 520th place)

web.archive.org (Global: 1st place; English: 1st place)

wiley.com (Global: 222nd place; English: 297th place)

onlinelibrary.wiley.com

worldcat.org (Global: 5th place; English: 5th place)

search.worldcat.org

archive.org (Global: 6^th place; English: 6^th place)

archive.today (Global: 14^th place; English: 14^th place)

asu.edu (Global: 2,187^th place; English: 1,500^th place)

doi.org (Global: 2^nd place; English: 2^nd place)

harvard.edu (Global: 18^th place; English: 17^th place)

nih.gov (Global: 4^th place; English: 4^th place)

nist.gov (Global: 355^th place; English: 454^th place)

oracle.com (Global: 1,514^th place; English: 1,024^th place)

php.net (Global: 4,194^th place; English: 3,676^th place)

psu.edu (Global: 207^th place; English: 136^th place)

semanticscholar.org (Global: 11^th place; English: 8^th place)

uiowa.edu (Global: 3,018^th place; English: 1,865^th place)

upenn.edu (Global: 702^nd place; English: 520^th place)

web.archive.org (Global: 1^st place; English: 1^st place)

wiley.com (Global: 222^nd place; English: 297^th place)

worldcat.org (Global: 5^th place; English: 5^th place)