Keeping in mind the increasing volume of real time transactions on the internet, security in Web Applications is vital to protect the value and usability of assets. The level of security has neither grown as fast as the Internet Applications nor evolved as fast as the attacks and intrusions, exposing various vulnerabilities inherent in the Internet bases services of the era. These Application-level exposures have been exploited with serious consequences including shipping goods for no charge, thefts and leaks of confidential data.SQL Injection and Cross-Site Scripting are the two most common attacks that exploit the vulnerabilities in Web Applications. We have proposed a combination of CIDT (Code Injection Detection Tool) & Reverse Proxy to protect against SQL Injection and Malicious Code Injection Attacks.We propose to achieve this by utilizing a second server of reverse proxy to increase the efficiency of the web server. This technique has the advantage that it can be used as an add-on tool for most web applications without the need to make changes in the initial coding.