A type of security vulnerability in which an attacker can execute malicious SQL statements by manipulating input data, typically through web forms or URL parameters.

"The website was vulnerable to SQL injection attacks due to improper input validation."