Google Search: filetype:sql (“passwd values” | “password values” | “pass values” )
hermes rates this entry 10 out of 10.
Submitted: 2005-02-23 00:00:00
Added by: hermes
Find insert statements where the field (or table name) preceding the operator VALUES will be ‘password’ or ‘passwd’ or ‘pass’. The rest of the statement should contain encrypted or plaintext password.An attacker can use these files to acquire database permissions that normally would not be given to the masses.