The official website of Embassy of Kazakhstan in Delhi in Delhi having SQL injection Vulnerability. Hacker with codename -has successfully Extract the database tables info and leak it on a pastebin note including Admin’s username and Password. Attackers utilize this vulnerability by providing specially crafted input data to the SQL interpreter in such a manner that the interpreter is not able to distinguish between the. intended commands and the attacker’s specially crafted data. The interpreter is tricked into executing unintended commands. Injection can be prevented if you adopt an input validation technique in which user input is authenticated against a set of defined rules for length, type, and syntax.
Source: https://thehackernews.com/2012/01/embassy-of-kazakhstan-hacked-by.html