This is often used in blind SQL injection to test if a database is vulnerable. By forcing the database to multiply a value by every row in a standard table like INFORMATION_SCHEMA , an attacker can cause a "Time Delay" or a "Heavy Query" to confirm the injection point exists. Security Implications

This appears to be an designed to perform a mathematical operation based on a conditional statement. Specifically, the query breaks down as follows: The Logic: It checks if 2593 equals 6942 .

Never trust user-supplied data to build raw SQL strings.

If you are seeing this in your web server logs or as an input in your application:

Since that is false, it attempts to execute 2593 * (SELECT 2593 FROM INFORMATION_SCHEMA.CHARACTER_SETS) .

Upcoming Events

Then 2593 Else 2593*(select 2593 From Information_schema.character_sets) End)) - (select (case When (2593=6942)

This appears to be an designed to perform a mathematical operation based on a conditional statement. Specifically, the query breaks down as follows: The Logic: It checks if 2593 equals 6942 . This is often used in blind SQL injection

Never trust user-supplied data to build raw SQL strings. Specifically, the query breaks down as follows: The

If you are seeing this in your web server logs or as an input in your application: This is often used in blind SQL injection

Since that is false, it attempts to execute 2593 * (SELECT 2593 FROM INFORMATION_SCHEMA.CHARACTER_SETS) .

CPR Classical Presents: Colorado Symphony Holiday Brass

7:00pmBoettcher Concert Hall

Dec16

Save the Date: Turn the Page with Colorado Matters and Josh Blue

7:30pmDairy Arts Center

Feb12

Sign Up For Our Newsletters

Upcoming Events

Then 2593 Else 2593*(select 2593 From Information_schema.character_sets) End)) - (select (case When (2593=6942)

CPR Classical Presents: Colorado Symphony Holiday Brass

Save the Date: Turn the Page with Colorado Matters and Josh Blue

Listen to a Colorado Postcard