Don't Forget to Secure Your API
Mar 04, 2012, 17:00 (3 Talkback[s])
"Another risk with APIs is the potential for SQL Injection,
which is among the most dangerous and common type of exploits on
the web today.
According to Morisson, APIs in some ways actually make it easier
for attackers to attempt SQL injection attacks. APIs are
self-documenting, providing information on usage and connections,
whereas the web is more obfuscated in terms of the underlying
structure of what is going into a database.