ARTICLE
SQL Injections
An SQL injection is a widely
used attack method on insufficiently secure dynamic programming. An
SQL injection passes malicious SQL code injected into a
program to the database system. In ABAP, this can occur when the
following dynamic programming techniques are used:
Dynamically specified tokens in
Open SQL
Use of ADBC
Use of Object Services
Generic programming
Documentation extract taken from SAP system, � Copyright SAP AG. All rights reserved