> For the complete documentation index, see [llms.txt](https://kunalwalavalkar.gitbook.io/write-ups/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://kunalwalavalkar.gitbook.io/write-ups/portswigger-labs/server-side-topics/sql-injection.md).

# SQL injection

* [SQL injection vulnerability in WHERE clause allowing retrieval of hidden data](/write-ups/portswigger-labs/server-side-topics/sql-injection/sql-injection-vulnerability-in-where-clause-allowing-retrieval-of-hidden-data.md)
* [SQL injection vulnerability allowing login bypass](/write-ups/portswigger-labs/server-side-topics/sql-injection/sql-injection-vulnerability-allowing-login-bypass.md)
* [SQL injection attack, querying the database type and version on Oracle](/write-ups/portswigger-labs/server-side-topics/sql-injection/sql-injection-attack-querying-the-database-type-and-version-on-oracle.md)
* [SQL injection attack, querying the database type and version on MySQL and Microsoft](/write-ups/portswigger-labs/server-side-topics/sql-injection/sql-injection-attack-querying-the-database-type-and-version-on-mysql-and-microsoft.md)
* [SQL injection attack, listing the database contents on non-Oracle databases](/write-ups/portswigger-labs/server-side-topics/sql-injection/sql-injection-attack-listing-the-database-contents-on-non-oracle-databases.md)
* [SQL injection attack, listing the database contents on Oracle](/write-ups/portswigger-labs/server-side-topics/sql-injection/sql-injection-attack-listing-the-database-contents-on-oracle.md)
* [SQL injection UNION attack, determining the number of columns returned by the query](/write-ups/portswigger-labs/server-side-topics/sql-injection/sql-injection-union-attack-determining-the-number-of-columns-returned-by-the-query.md)
* [SQL injection UNION attack, finding a column containing text](/write-ups/portswigger-labs/server-side-topics/sql-injection/sql-injection-union-attack-finding-a-column-containing-text.md)
* [SQL injection UNION attack, retrieving data from other tables](/write-ups/portswigger-labs/server-side-topics/sql-injection/sql-injection-union-attack-retrieving-data-from-other-tables.md)
* [SQL injection UNION attack, retrieving multiple values in a single column](/write-ups/portswigger-labs/server-side-topics/sql-injection/sql-injection-union-attack-retrieving-multiple-values-in-a-single-column.md)
