50 SQL Injection Retrieve records from another table Union Injection Part 8

Union Clause So far, we've only manipulated the original query to change the web application logic and bypass the validation, using the OR operator and annotations. However, another type of SQL injection is injecting complete SQL queries that are executed along with the original query. This section will demonstrate this by using the MySQL Union section to perform SQL Union injection. Union Before we start learning about Union Injection, we should first learn more about the union clause of SQL. The union clause is used to combine results from multiple SELECT statements. This means that by injecting UNION, we can select and dump data from all over the DBMS, from multiple tables and databases. Let's try using the UNION operator in a sample database.