ARTICLE
SQL injection
Injection of malicious SQL statements by
an attacker. SQL injections are possible whenever programs adopt
external statements (or parts of statements) that are then are passed to
the database system without being
checked or escaped. In ABAP, SQL injections must be prevented by
appropriate checks or escape methods whenever
tokens are specified dynamically in Open
SQL , when ADBC is used, and in
generic programming.
ABAP_MORE_INFO
Documentation extract taken from SAP system, � Copyright SAP AG. All rights reserved