Donate to us via Paypal!
Your life is ending one minute at a time. If you were to die tomorrow, what would you do today?
Monday, January 25, 2021
Navigation
Home
 Find:
 Information:
Learn
Communicate
Submit
Shop
Challenges
 Exploit:
 Programming:
 Think:
 Track:
 Patch:
 Other:
 Need Help?
Other
Members Online
Total Online: 89
Guests Online: 88
Members Online: 1

Registered Members: 132793
Newest Member: MarjorieUncen
Latest Articles

View Thread

HellBound Hackers | Computer General | Hacking in general

Author

Noob sql injection question


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 27-06-08 05:52
Ok so this is my first time performing an SQL injection, I found a site that is vulnerable. I did the ORDER BY command to find the number of colums on the page and that came out to be 4. Ok, so then I tried to use the UNION SELECT command to find the names of the tables and i keep receving this error:

Microsoft OLE DB Provider for ODBC Drivers error '80040e14'

[Microsoft][ODBC SQL Server Driver][SQL Server]All queries in an SQL statement containing a UNION operator must have an equal number of expressions in their target lists.

/industry/industry.asp, line 13

I was wondering if anyone would be able to give me a little help on this one.
-Thanks
Author

RE: Noob sql injection question

DeafCode
Member



Posts: 214
Location: United States
Joined: 04.05.08
Rank:
Apprentice
Posted on 27-06-08 06:28
im not really good at this but try

UNION SELECT NULL,NULL,NULL,NULL

again im not good at SQL so this could be wrong but there you go


Bear witness, the true absurdity of existence.
Author

RE: Noob sql injection question


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 27-06-08 07:23
Thanks for the help man, it was my mistake i had the wrong number of tables.
Author

RE: Noob sql injection question

DeafCode
Member



Posts: 214
Location: United States
Joined: 04.05.08
Rank:
Apprentice
Posted on 27-06-08 07:30
did it work??


Bear witness, the true absurdity of existence.