blind SQL injection is when an attacker sends the query and doesnt have the ability to view results directly. The the attacker sends input to the web applicationcthat test wether the app is interpretjnf injected code before attemoting to carry out attack