Injection flaw

Definition
An injection flaw' is a

"[v]ulnerability that is created from insecure coding techniques resulting in improper input validation, which allows attackers to relay malicious code through a web application to the underlying system."

Overview
"This class of vulnerabilities includes SQL injection, LDAP injection, and XPath injection."