Post by 5ilic0n on Sun Apr 28, 2013 1:36 am
Alright, I'm just a beginner in SQL, but I need help understanding what's going on here.

So let's say we have this query:
qry = "INSERT INTO Students VALUES ('" + tbName.Text + "', " + tbSSN.Text + ")";

I assume that "+tbName.Text+" is making tbName.Text into a string because of adding the double quotes. Is that true? The single quotes are needed to actually insert a string into the db. If I'm wrong, just tell me so.

So I was reading about enumerating columns with the "order by" clause. I also read this following statement:
http://www.victim.com/index.php?id=10' order by 2--+

I've seen something like "order by 2--" but I haven't seen the plus before. Is it similar to what is happening in the insert query? If someone can show me some possible php code that would make 'order by 2--+ work, then I'd be grateful. I'm still confused on what the + is doing if -- comments everything..

This was a silly question. According to the MySQL manual, a "--" comment cannot be followed by a control character, so a space is required. A "+" sign gets interpreted as a space by the url, so the comment is valid.

