An SQL injection is a technique used to attack data-based applications by inserting malicious SQL code to alter the normal functioning of the program. This is a serious security error that can do a lot of damage.
What is Droid SQLi used for?
According to its developer Edgard Chammas, the DroidSQLi application lets attackers perform the SQL injection into a target URL, always for educational purposes and without any guarantee that it will work properly. The user who wants to try it will be solely responsible for the possible result.
If you consider yourself to be brave enough, you 'just' have to find a vulnerable destination URL and the app will start the SQL injection attack fully automatically. If the process works, the names of the accessible databases will appear on the interface and all the necessary information can be obtained by clicking on them.