Abstract : SQL Injection Attack causes a very serious security issue over web applications or websites. In this attack, Attacker is able to take benefit of poorly coded Web application software to put malicious or unwanted code into the organizations systems and network. The vulnerability exists within web application when a Web application does not provide proper validation or filtering for the input data entered by the user in the Input fields. In today’s world there are large numbers of web application which are having many input fields where Hacker can get chance to attack as a SQL Injection (E.g. To dump the database contents to the attacker). So Attacker can access the confidential data of the organization. We are going to present a project of SQL Injection attack, detection and prevention techniques in this web form project .we have two pages one is vulnerable and second one is secure It Targets the back end data stores through web application inputs like forms, URLs etc. Keywords- Tautology, Injection attack, vulnerability, prevention.