Injection - dyong - 博客大巴

MSSQL Injection Cheat Sheet - [network security]

2009-05-06

Version
select @@version

Comments

dyong 发表于20:01:54 | 阅读全文 | 评论 0 | 编辑 | 分享 0
MySQL Injection Cheat Sheet - [network security]

2009-05-06

Basics.
select * FROM login /* foobar */
select * FROM login where id = 1 or 1=1
select * FROM login where id = 1 or 1=1 AND user like "%root%"
Variations.

dyong 发表于20:01:03 | 阅读全文 | 评论 0 | 引用1 | 编辑 | 分享 0
Postgres SQL Injection Cheat Sheet - [network security]

2009-05-06

Version
select version()

Comments

dyong 发表于20:00:12 | 阅读全文 | 评论 0 | 编辑 | 分享 0
Informix SQL Injection Cheat Sheet - [network security]

2009-05-06

Version
select DBINFO('version', 'full') FROM systables where tabid = 1;
select DBINFO('version', 'server-type') FROM systables where tabid = 1;
select DBINFO('version', 'major'), DBINFO('version', 'minor'), DBI...

dyong 发表于19:59:11 | 阅读全文 | 评论 0 | 编辑 | 分享 0
DB2 SQL Injection Cheat Sheet - [network security]

2009-05-06

Version
select versionnumber, version_timestamp from sysibm.sysversions;

Comments

dyong 发表于19:57:11 | 阅读全文 | 评论 0 | 编辑 | 分享 0
SQL Injection Tutorial - [network security]

2009-03-21

By： Marezzi
From：http://www.milw0rm.com/papers/202

In this tutorial i will describe how sql injection works and how to use it to get some useful information.

First of all: What is SQL injection? It's one of the most common vu...

dyong 发表于13:28:36 | 阅读全文 | 评论 0 | 编辑 | 分享 0

共1页 1