After all of these years, SQL injection vulnerabilities still stand as an old reliable for attackers seeking to break into corporate databases. Not enough organizations are engaging in distributed security — in other words, they’re putting all the eggs in one risky basket. Technical missteps, business process issues, and attack environment factors are some of the top 10 reasons why SQL injection persists. Insecure Development Architecture and poor development planning are one of the reasons why it persists, says Randall Agee, CEO of Allshore Global Resources.”]
Source: https://www.darkreading.com/database-security/10-reasons-sql-injection-still-works