New Type Of Sql Injection – Critical Security.NET
Posted on 19. Jun, 2009 by admin in MySQL
MySQL , for instance, has the INTO OUTFILE function that can be used to write files to the server. For instance, SELECT ‘ ‘ INTO OUTFILE(‘/var/www/mysite/shell.php’) In a bit of a rush, so hope that helps.
Originally posted here:
New Type Of Sql Injection – Critical Security.NET
