Welcome to HBH! If you have tried to register and didn't get a verification email, please using the following link to resend the verification email.

basice web 8

  1. Home
  2. Forum
  3. Basic
  4. basice web 8

ghost's Avatar

ghost

0 0

do u need to use the UNION or UNION ALL command for this challenge?


ghost's Avatar

ghost

0 0

don't know where you got those arguments from, but a simpler way to do this (and almost all SQL injections) is to type in arbitrary code, then look at the error message.

Look thoroughly at the error you get, and think of how you can use that, or modify it to your advantage. ie: to access something you're not supposed to. Ciao!


ghost's Avatar

ghost

0 0

here are some things i tried:

[edited…]

am i close or anything?


ghost's Avatar

ghost

0 0

carrico wrote: ?SELECT * FROM family_db

That is the query needed, but you need to find the variable name to put that query in.


ghost's Avatar

ghost

0 0

please edit this posts

dont be so clear and dont write solutions


ghost's Avatar

ghost

0 0

?SELECT * FROM family_db

That is the query needed, but you need to find the variable name to put that query in.

"varialbe name" meaning what goes in for the '*'?