SQL Tools
Select Tool
Injection Cleaning Query Generator
showcontig Analyzer
SQL Version
SQL 2005/2008
SQL 2000
Injection Type
Standard ASPROX
<script src="http://www.example.com/ngg.js"></script>
Coldfusion
"></title><script src="http://www.example.com/ngg.js"></script><!--
Other
Starts with:
Ends with:
DECLARE @T varchar(255),@C varchar(255) DECLARE Table_Cursor CURSOR FOR select a.name,b.name from sysobjects a,syscolumns b where a.id=b.id and a.xtype='u' and (b.xtype=99 or b.xtype=35 or b.xtype=231 or b.xtype=167) OPEN Table_Cursor FETCH NEXT FROM Table_Cursor INTO @T,@C WHILE(@@FETCH_STATUS=0) BEGIN exec('update ['+@T+'] set ['+@C+']=reverse(right(reverse(convert(varchar (max),['+@C+'])), len(convert(varchar (max),['+@C+'])) - (patindex(''%tpircs<%'', reverse(convert(varchar (max),['+@C+']))) + 6))) where ['+@C+'] like ''%<script%</script>''') FETCH NEXT FROM Table_Cursor INTO @T,@C END CLOSE Table_Cursor DEALLOCATE Table_Cursor;