Which of the following types of application attacks would be used to specifically gain unauthorized information from databases that did not have any input validation implemented?