Hacktricks | Mysql

-- Check for dangerous functions SELECT * FROM mysql.func; -- user-defined functions (UDF) 👑 UDF (User Defined Functions) – SYSTEM shell If secure_file_priv allows writes to plugin dir:

-- Disable local_infile SET GLOBAL local_infile = 0; mysql hacktricks

-- Version & OS SELECT version(); SELECT @@version_comment; SELECT @@hostname; -- Current user & privileges SELECT user(); SELECT current_user(); SELECT grantee, privilege_type FROM information_schema.user_privileges; -- Check for dangerous functions SELECT * FROM mysql