Code injection is a form of attack in which a malicious user:

Code injection is a form of attack in which a malicious user:

  1. Gains access to the codebase on the server and inserts new code
  2. Inserts text into a data field that gets interpreted as code
  3. Inserts additional code into the JavaScript running in the browser
  4. Gets the server to execute arbitrary code using a buffer overflow