# SQL injection

* [SQL injection vulnerability in WHERE clause allowing retrieval of hidden data](https://kunalwalavalkar.gitbook.io/write-ups/portswigger-labs/server-side-topics/sql-injection/sql-injection-vulnerability-in-where-clause-allowing-retrieval-of-hidden-data)
* [SQL injection vulnerability allowing login bypass](https://kunalwalavalkar.gitbook.io/write-ups/portswigger-labs/server-side-topics/sql-injection/sql-injection-vulnerability-allowing-login-bypass)
* [SQL injection attack, querying the database type and version on Oracle](https://kunalwalavalkar.gitbook.io/write-ups/portswigger-labs/server-side-topics/sql-injection/sql-injection-attack-querying-the-database-type-and-version-on-oracle)
* [SQL injection attack, querying the database type and version on MySQL and Microsoft](https://kunalwalavalkar.gitbook.io/write-ups/portswigger-labs/server-side-topics/sql-injection/sql-injection-attack-querying-the-database-type-and-version-on-mysql-and-microsoft)
* [SQL injection attack, listing the database contents on non-Oracle databases](https://kunalwalavalkar.gitbook.io/write-ups/portswigger-labs/server-side-topics/sql-injection/sql-injection-attack-listing-the-database-contents-on-non-oracle-databases)
* [SQL injection attack, listing the database contents on Oracle](https://kunalwalavalkar.gitbook.io/write-ups/portswigger-labs/server-side-topics/sql-injection/sql-injection-attack-listing-the-database-contents-on-oracle)
* [SQL injection UNION attack, determining the number of columns returned by the query](https://kunalwalavalkar.gitbook.io/write-ups/portswigger-labs/server-side-topics/sql-injection/sql-injection-union-attack-determining-the-number-of-columns-returned-by-the-query)
* [SQL injection UNION attack, finding a column containing text](https://kunalwalavalkar.gitbook.io/write-ups/portswigger-labs/server-side-topics/sql-injection/sql-injection-union-attack-finding-a-column-containing-text)
* [SQL injection UNION attack, retrieving data from other tables](https://kunalwalavalkar.gitbook.io/write-ups/portswigger-labs/server-side-topics/sql-injection/sql-injection-union-attack-retrieving-data-from-other-tables)
* [SQL injection UNION attack, retrieving multiple values in a single column](https://kunalwalavalkar.gitbook.io/write-ups/portswigger-labs/server-side-topics/sql-injection/sql-injection-union-attack-retrieving-multiple-values-in-a-single-column)