Home
Tech info
Technology
Science
Life
Application
Electric
Program
Mobile
Windows 10
Windows 11Web3: SQL injection - Exploit directions
1. Boolean based and Time based Blind SQL injection
Boolean based: The basis of this technique is the comparison of true and false to find each character of information such as table name, column name. Therefore, with the range of alphanumeric values (including uppercase, normal), and some special characters, the matching becomes very difficult and requires a lot of time. Therefore, exploiting bugs is mainly carried out using tools.
In the Blind SQLi technique, we also have many different methods. The difference between these methods is the optimization of time. We will learn about blind SQL injection and its methods in the following topics.
Time based: Like boolean based attacks, differing only in inference, it relies on the processing time of the database and then returns the results to determine whether the SQL query executed successfully.
2. Union query based
This is a common method when exploiting SQL injection. Its basis is to use the union keyword to combine the results of select clauses, thereby obtaining information from the database. You can see examples of using this method in SQL injection exploitation in the previous topics: Web1: SQL Injection - The most common exploit route and Web2: SQL Injection - Other exploits.
3. Batch query
This is a method to apply the ability to execute multiple SQL statements at the same time of several database management systems and the support of programming languages. This method is very powerful and causes immediate danger to the system. By adding an Update, Insert or Delete command line, the data in the web application's database is no longer intact.
We can insert the following SQL statement to delete a table in the database:
4. Order by clause
Unlike the above methods, the inject content is in the where clause. In this method, we will try to inject script code into the order clause. Let's take a look at the following scenario:
The programmer wants to list the company's products including the following information: Product Code, Product Name, Date . and has the function for users to customize whether they want to sort by date, according to product name or code.
The query is constructed as follows:
In this case we cannot directly add a sub select clause via the union keyword as always. One way to exploit that is to use BATCHED QUERY or you can refer to the following way:
In the above method, we were able to inject a sub select, but obviously this implementation must now be combined with the BOOLEAN BASED BLIND SQLI technique.
Jessica TannerYou should read it
- Web5: SQL injection - Some techniques to bypass the filtering mechanism
- Web4: SQL injection - Exploitation steps
- Learn about SQL Injection and how to prevent it
- What is Fault Injection Attack (FIA)? Is it worrisome?
- WordPress plugins with more than 300,000 pages that use vulnerabilities are vulnerable to SQL Injection attacks
- What is AI Prompt Injection attack?
- Discuss IFrame Injection Attacks
- Block hacker SQL Injection with ASP
May be interested
- How to Prevent SQL Injection in PHP
this wikihow teaches you how to prevent sql injection using prepared statements in php. sql injection is one of the most common vulnerabilities in web applications today. prepared statements use bound parameters and do not combine... - Discuss IFrame Injection Attacksthe type of attack technique iframe injection is still the most basic and popular form of cross-site scripting - xss model .
- What is AI Prompt Injection attack?ai prompt injection attacks poison the output from the ai tools you rely on, changing and manipulating its output into something harmful.
- Block hacker SQL Injection with ASPsql injection is a hacker 's attack tool to steal vital, vital information of vulnerable organizations and companies.
- Web7: XSS Exploits – Part 1: Reflected XSSin this article, tipsmake.com will learn with you about the reflected xss exploit.
- Download the latest Joomla version to fix a serious SQL Injection vulnerabilityif your website is based on the joomla content management system make sure to update it to the latest version, which has just been released today.
- Instructions for Mario to be a guide on Google Mapswith this tip, you can use the mario driving game character image instead of the direction arrow on the previous google maps application. interesting, isn't it?
- How to give directions by voice on iPhonein this article, tipsmake.com will show you how to set up voice directions on iphone.
- Web8: XSS Exploits - Part 2: Stored XSSin this article, tipsmake.com invites you to learn about stored xss, another popular xss mining method.
- Google Maps updates directions for many destinationsafter nearly five months since google launched the redesigned maps service, the company has continued to release new updates with navigation features for many destinations.
Basic knowledge
- Web2: SQL Injection - Other Exploits
- What is Grayware? Is Grayware Dangerous?
- How much storage space does your computer need?
- What is MIL-STD-810G? What does the MIL-STD-810G standard mean for smartphones?
- Why are connector cables usually gold plated? Is it necessary?
- What is Starlink? How does satellite internet work?
Web2: SQL Injection - Other Exploits
What is Grayware? Is Grayware Dangerous?
How much storage space does your computer need?
What is MIL-STD-810G? What does the MIL-STD-810G standard mean for smartphones?
Why are connector cables usually gold plated? Is it necessary?
What is Starlink? How does satellite internet work?