inurl index php db information schema\ union all select null,null,null hlcn

SQL Injection | HackTricks | HackTricks

Select more and more null values until the query is correct Tables of a database -1' UniOn Select 1,2,3,gRoUp_cOncaT(0x7c,table_name,0x7C) fRoM information_schema.tables wHeRe table_schema=[database] #.

book.hacktricks.xyz

SQL-инъекции' union select null, null, null -- / Хабр

?id=1' union select null,null,table_name,null from information_schema.tables Это стало возможным благодаря добавлению таблицы information_schema в MySQL 5.0+ и по ее наличию также можно косвенно определить версию используемой БД.

habr.com

Шпаргалка по SQL инъекциям | DefconRU

defcon.ru

MySQL SELECT only not null values | Gang of Coders

SELECT * (that are NOT NULL) FROM table. SELECT * FROM table WHERE YourColumn IS NOT NULL; Just for completeness I'll mention that in MySQL you can also negate the null safe equality operator but this is not standard SQL.

www.gangofcoders.net

sql - How null values are treated in union/union all in... - Stack Overflow

stackoverflow.com

How the SQL UNION Operator Deals with NULL Values

So three NULLs were reduced to just one NULL. We can use the ALL keyword to include all duplicates, and that includes duplicate NULLs: Select null union all select null union all select null

database.guide

sql injection "union select null" - CodeProject

Union select null, null, null, null, null, null, null from information_schema.tables. for a small database containing three tables. When you do a UNION query, both SELECT statements of the query must have the same number of columns.

www.codeproject.com

Advanced SQL Injection: Union based | VK9 Security

Select column_name from information_schema.columns where table_schema=database() and table_name='tablenamehere'. SELECT is_srvrolemember(‘sysadmin’); — is your account a sysadmin? returns 1 for true, 0 for false, NULL for invalid role.

vk9-sec.com

Статья - SQL-injection, начало - UNION BASED - Codeby.net

CREATE TABLE login ( id INT NOT NULL AUTO_INCREMENT, nickname VARCHAR(30) NOT NULL, login VARCHAR(40) NOT NULL, statement INT NOT NULL, PRIMARY KEY(id) ) Отправляем запрос 99999' union select 1,2,database(),4 -- - Вот и наша базка golden_key.

codeby.net

SQL Injection Series PHP + Mysql manual... - Programmer Sought

Use union select null, null, null is the same. information_schema mysql greater than 5.0 of the library version of the database and stores all information mysql table structure, it is possible using information_schema library was quickly injected.