This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit

SQL Injection Cookbook template

Revision as of 18:56, 13 January 2007 by [email protected] (talk | contribs)

Jump to: navigation, search


Data about data

List of table names

How to get a list of table names

List of columns for a specific table

Information about the indexes of a specific table

List of stored procedures

Parameters for stored procedures

Source code of stored procedures

List of database users

Database user permissions

Database server settings

How to perform:

Data type casting

String-based queries with no quote characters

SQL tautology attacks