Sadriddin Shamsuddinov
Reputation: 11
How this query works in Mysql?
I have a table user with 2 rows
CREATE TABLE `user` (
`id_user` INT(9) AUTO_INCREMENT,
`login` VARCHAR(50),
`passw` VARCHAR(32),
PRIMARY KEY (`id_user`)
) CHARSET=utf8 COLLATE utf8_general_ci;
INSERT INTO `user` VALUES
(NULL, 'Admin', '123'),
(NULL, 'Nik', '456');
then i make a query:
SELECT * FROM `user` WHERE `login` = '' OR ''='' AND `passw`='' OR ''=''
the result :
1 Admin 123
2 Nik 456
So how it works? What does it mean ''='' ?
I would be grateful if you could advise literature where I can learn about something similar.
Upvotes: 0
Views: 47
Answers (1)
GMB
Reputation: 222682
This looks like a SQL injection attempt. This:
WHERE `login` = '' OR ''='' AND `passw`='' OR ''=''
Evaluates as:
WHERE `login` = ''
OR (''='' AND `passw`='')
OR ''=''
Condition '' = '' is always true (the empty string is equal to the empty string), so the WHERE clause evaluates as true for every row of the table: the query returns the whole table.
Upvotes: 4
Related Questions
- How would someone use sql injection on this query
- Why this sql is correct? (sql injection)
- What is the purpose of this sort of SQL injection?
- How does this SQL query work?
- How does this mySQL Query works?
- What's MySQL's string compare rule?
- What is this SQL injection doing?
- PHP: Understand SQL Injection
- SQL Injection attack - What does this do?
- How is this MySQL query vulnerable to SQL injection?