{keyword} Union — All Select Null,null,null,null,null,null-- Gojb

: The attacker wants the database to return the results of the original query plus the results of their injected query.

This is the "probe" part of the injection. The attacker is trying to determine the number of columns being returned by the original database query. : The attacker wants the database to return

If the page returns an error (like "The used SELECT statements have a different number of columns"), the attacker will try again with five or seven NULL values until the error disappears. 4. -- (The Comment) In SQL, double-dashes signify the start of a comment. If the page returns an error (like "The

Scanners append strings like GoJB so that the security researcher can search the website's logs or the page's source code later to confirm that their input was successfully processed and reflected by the server. Summary of the Attack Flow Scanners append strings like GoJB so that the

: This "comments out" the rest of the original SQL query written by the developers.