35 lines
597 B
Plaintext
35 lines
597 B
Plaintext
== Special Characters
|
|
|
|
[source]
|
|
----
|
|
/* */ are inline comments
|
|
-- , # are line comments
|
|
|
|
Example: Select * from users where name = 'admin' --and pass = 'pass'
|
|
----
|
|
|
|
|
|
[source]
|
|
----
|
|
; allows query chaining
|
|
|
|
Example: Select * from users; drop table users;
|
|
----
|
|
|
|
[source]
|
|
----
|
|
',+,|| allows string concatenation
|
|
Char() strings without quotes
|
|
|
|
Example: Select * from users where name = '+char(27) or 1=1
|
|
----
|
|
|
|
|
|
== Special Statements
|
|
|
|
Unions allows overlapping of database tables
|
|
'Select id, text from news
|
|
union all select name, pass from users'
|
|
|
|
Joins allows connecting to other tables
|