HTML

<div id="sql_injection">
  <h1>SQL Injection</h1>

  <div class="image right">
    <%= image_tag asset_path('etc/sql_injection.jpg'), width: 450, height: 313 %>
    <p class="hint right">Super awesome <s>stolen</s> borrowed clipart!</p>
  </div>

  <h3>What is SQL Injection?</h3>
  <p>SQL injection is a form of attack that targets web applications that use relational databases to store data and <u>S</u>tructured <u>Q</u>uery <u>L</u>anguage to fetch data.</p>
  <p>SQL injection works by tricking the application into performing SQL commands other than those intended by the application's developer(s).</p>
  <p>The reason it works is because SQL recognizes specific syntax and statements that alter the database by inserting rows, updating rows, deleting rows or dropping databases, etc.</p>
</div>