Differences

This shows you the differences between two versions of the page.

--- hacking:sql_injection_cheat_sheet_oracle [2020/04/01 11:21] – created peter
+++ hacking:sql_injection_cheat_sheet_oracle [2020/07/15 09:30] (current) – external edit 127.0.0.1
@@ Line 58: / Line 58: @@
 SELECT CAST('1' AS int) FROM dual;
 </code>|
-|String Concatenation|SELECT 'A' || 'B' FROM dual; -- returns AB|
+|String Concatenation|<nowiki>SELECT 'A' || 'B' FROM dual; -- returns AB</nowiki>|
 |If Statement|BEGIN IF 1=1 THEN dbms_lock.sleep(3); ELSE dbms_lock.sleep(0); END IF; END; -- doesn't play well with SELECT statements|
 |Case Statement|<code>
@@ Line 64: / Line 64: @@
 SELECT CASE WHEN 1=2 THEN 1 ELSE 2 END FROM dual; -- returns 2
 </code>|
-|Avoiding Quotes|SELECT chr(65) || chr(66) FROM dual; -- returns AB|
+|Avoiding Quotes|<nowiki>SELECT chr(65) || chr(66) FROM dual; -- returns AB</nowiki>|
 |Time Delay|<code>
 BEGIN DBMS_LOCK.SLEEP(5); END; -- priv, can't seem to embed this in a SELECT
@@ Line 76: / Line 76: @@
 SELECT UTL_HTTP.REQUEST('http://google.com&#39;) FROM dual;
 </code>|
-|Command Execution |
+|Command Execution |<code>
 [[http://www.0xdeadbeef.info/exploits/raptor_oraexec.sql|Java]] can be used to execute commands if it's installed.
@@ Line 82: / Line 82: @@
 [[http://www.0xdeadbeef.info/exploits/raptor_oraextproc.sql|ExtProc]] can sometimes be used too, though it normally failed for me. :-(
 </code>|
-|Local File Access|
+|Local File Access|<code>
 [[http://www.0xdeadbeef.info/exploits/raptor_oraexec.sql|UTL_FILE]] can sometimes be used. Check that the following is non-null:
 SELECT value FROM v$parameter2 WHERE name = 'utl_file_dir';
@@ Line 99: / Line 98: @@
 SYSTEM
 SYSAUX
-</code>
+</code>|
 ----