The document discusses how SQL wildcards can be abused to consume CPU resources on database servers by overloading them with search queries. It notes that many applications with SQL Server backends and a search feature are vulnerable as they allow unrestricted wildcard searches that could return large numbers of records. The SQL Server supports wildcards that can match multiple records, allowing an attacker to craft queries that use wildcards to return very large result sets and overload the database.