Webs 1.x, 2.x

• Target: Countless web applications

• Input: Usually a web form

• Impact: Usually an SQL error, sometimes an internal server error

• Cause: WebApp developers not restricting or sanitizing input