Skip to main content

Table 3 Examples of SQL Injection attack types

From: A robustness testing approach for SOAP Web services

Parameter mutations
” or 1=0 \(-\)
” or 1=1 \(-\)
” or 1=1 or ” ”=”
’ or (EXISTS)
’ or uname like ’%
’ or userid like ’%
’ or username like ’%
’ UNION ALL SELECT
’ UNION SELECT
char%2839%29%2b%28SELECT
char%4039%41%2b%40SELECT
" or 1=1 or""="
' or''='