A company's customer portal allows users to enter their usernames and passwords to access their accounts. An attacker exploits the login form by entering specially crafted input that causes the database to reveal all user credentials. What type of vulnerability is being exploited in this scenario?
Cross-site scripting (XSS)
Buffer overflow
SQL injection
Denial of service (DoS)