whaaaa, this explains what "SQL Injection" is. Even people who are only use computers could understand this.
In 2 sentences: many computer programs use things called databases to store data. Databases take data from computer programs and some special commands [proper term: SQL]. The common error for ppl who write programs is to forget to separate data from those commands. The result is pictured above where data, a boy's name, is mixed with text that database recognize as command
DROP TABLE studentswhich deletes all data named "students". This sort of error called "SQL Injection".