Is there a way to update a table, and select it within one statement?
Question
I am currently practicing SQL injection on a local host web application. In order to successfully do that, a value must be returned in the statement (by using SELECT ). I'm trying to change the password of the user:
changepwd', (UPDATE mysql.user SET authentication_string=PASSWORD('new password')
WHERE user='root' UNION SELECT authentication_string from mysql.user)) #
With SQL injection you can't use ; . I tried UNION in that example to see if it would work but no luck. Any other ideas i could try?
1 answers
solution1
0 2016-11-23 22:15:48
I think the answer to this question is here .
In short the answer is create a stored procedure.
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.
Related Question
Update one table with values from another table using select statement
Update SQL statement with multiple fields within ONE table
Updating a table within a select statement
MySQL Update and Select in one statement
MySQL select and update in one statement
How can I replace within a SELECT the statement from one table to ther other one?
update a column in mysql table with update and select statement
SQL - update records within select statement
Is there a better way to structure the embedded SELECT Statement within this SELECT Statement?
Doing UPDATE using a SELECT statement with GROUP_CONCAT within the same table
Related Tags