Register

What is a commonly publicized password sql injection string?

What is a commonly publicized password sql injection string?
72.2k views
5 votes
What is a commonly publicized password sql injection string?

User Ever
by
7.7k points

1 Answer

1 vote
The strings "or 1=1" and ""or ''=''" can be commonly used to trick an SQL WHERE clause into becoming true.

So if you specify ' or ''=' as a password, you can log in if the query string would be:

select username,pass from users where username='you' and password='' or ''='' limit 0,1;
User Tiago Coelho
by
7.5k points
← Prev Question Next Question →

Related questions

User Starlina
asked Feb 7, 2024 176k views
a 1976 case involving karen ann quinlan was one of the first publicized cases dealing with what topic?
Starlina asked Feb 7, 2024
by Starlina
8.3k points
1 answer
3 votes
176k views
Ask a Question
Welcome to QAmmunity.org, where you can ask questions and receive answers from other members of our community.

9.4m questions

12.2m answers

Categories

Other Questions

“What does it mean when we “rework” copyrighted material?”
The book shows how to add and subtract binary and decimal numbers. However, other numbering systems are also very popular when dealing with computers. The octal (base 8) numbering system is one of these.
Seven basic internal components found in a computer tower
Link Copied!