published
updated
:▟▟▝▝: %date
https://github.com/payloadbox/sql-injection-payload-list
SQL Injections
Types:
- In-Band SQL Injection - Usually used to exfiltrate data that isn't supposed to be accessible
- Error Based SQLi - Uses errors to understand how to exploit the db (Which tables exist, how many columns, etc)
- Blind SQLi - The data is not returned with the input query, so we can't exfiltrate
- Union-based SQLi - Using SQL union to gather data from other tables in a single query