Reputation: 1475
SQL Injection DROP TABLE not working
I need to demonstrate SQL Inject using PHP/MySQL. I want to inject a DROP TABLE query in a login form but it never works. (TRUNCATE table works fine OTOH).
After I input '; drop table users; # as field input; query turns out to be
SELECT * FROM `users` WHERE `email` = ''; DROP TABLE users; #' AND `password` LIKE '3232';
But it never works using mysql_query() function. When I copy/paste this query in PHPmyAdmin directly, it works perfectly and table gets dropped. What can be the issue?
Upvotes: 3
Views: 9371
Answers (2)
Reputation: 349
This is not possible in php/MySQL as php does not support stacked queries. The moment you inject semicolon (;) it will fail.
You can do many other much more creative exploits using sql injection in a php-mysql application though.
- Enumerate all databases
- Table Names and Column Names
- Values stored in tables
- Upload a php backdoor
Check Out for SQL-Map as well.
Upvotes: 1
Reputation: 10236
MULTIPLE SQL Execution is not enabled by defaults.
So SQL Injection like ;drop table won't work. please enable multiple sql execution. this could be enabled like http://php.net/manual/en/mysqli.quickstart.multiple-statement.php if you are using mysqli.
useful SQL Injection is :
SELECT COUNT(*) FROM users
WHERE user_id = '$user_id' AND passwd = '$passwd'
and user inserts passwd to ' || '1' = '1.
Upvotes: 3
Related Questions
- Testing SQL injection / Drop table not working
- Sql syntax error on DROP TABLE
- SQL Injection using PHP multi_query to DROP TABLE
- PHP MySQL API Can't Drop Table
- How to delete a table with SQL injection
- MySQL/PHP drop table not working
- unable to Drop a table in My Sql, You have an error in your SQL syntax 1064
- Drop Table if exists statement giving error
- Drop table in sql and add
- mysql drop statement with --