04 Jul 2018
Union Query SQL Injection (SQLi)
04 Jul 2018
OWASP 2013-A1 OWASP 2017-A1 OWASP 2021-A3 OWASP 2019-API8 PCI v3.2-6.5.1 OWASP PC-C3 CAPEC-66 CWE-89 HIPAA-164.306(a) & HIPAA-164.308(a) ISO27001-A.14.2.5 WASC-19 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H WSTG-INPV-05
Union Query SQL injection is a type of in-band injection attack that allows an attacker to extract information from the database quickly. This attack utilises the SQL UNION operator. This attack allows the attacker to combine more than one SQL commands into one SQL command. The response generated from the server is returned as HTTP response.
Example
The below code shows when an attacker gets the number of columns by using other injection attacks.
https://example.beaglesecurity.com/report.php?id=23 order by 5--+
https://example.beaglesecurity.com/report.php?id=23 union select 1,2,3,4,5--The resultant link generates a HTTP response.
Impact and Fixes
Latest Articles
The 7 Best Veracode Alternatives in the Market Today
February 6 2023
Internal Penetration Testing: The Definitive Guide [2023]
January 19 2023
Popular in Injection
WordPress Authenticated SQL Injection
June 29 2022
SQL injection(SQLi)
May 4 2022
Union Query SQL Injection (SQLi)
July 4 2018
Stacked Queries SQL Injection (SQLi)
July 4 2018
Inline Queries SQL Injection (SQLi)
July 4 2018
Categories
Client Side URL Redirect Cookies Attributes IBM SQL injection injection Time Based Blind SQL Injection SSL Injection CRLF Content Security Policy CSRF HSTS CORS Information Leakage status code SRI metadata X-XSS-Protection owasp XSS Clickjacking Cookies Directory traversal DOM XSS Blind SQL Injection SQL Injection XML Injection blog TLS WordPress web security SMB Cyber attacks AI Web server Wordpress Data Security DOMECTF2020 Container security CMS Security Code Execution Content security policy Htaccess Bypass DOMECTF2021 Press Webinar RFI DevSecOps Web Security Cyber Attacks DOMECTF2022 openssl HTTP headers Compliance AppSec
Related Articles
