Video: Second Order SQL Injection Attack Demo
SQLi is a technique where code is injected to data-driven applications. These codes includes malicious SQL statements which are inserted into an entry field for execution such as dumping database contents.
If you think your apps are secure or your target web app is not vulnerable to SQLi, think again!