IQL injection is a method which is used for inserting malicious SQL queries from client to web applications. When attacker is trying to insert a query through input data form, if user input data form is not filtered, the malicious query can change attitude of the query according to the injected SQL commands owasp. A simple example: