Some of the queries in the table below can only be run by an admin. These are marked with (PRIV) at the description.
Version
SELECT @@version;
Comments
SELECT1; #commentSELECT/*comment*/1;
Current User
SELECT user();SELECT system_user;
List Users (PRIV)
SELECT user FROM mysql.user;
List Password Hashes (PRIV)
SELECT host, user, passwordFROM mysql.user;
List Privileges (PRIV)
#List user privilegesSELECT grantee, privilege_type, is_grantable FROM information_schema.user_privileges#List privs on databases (schemas)SELECT grantee, table_schema, privilege_type FROM information_schema.schema_privileges;#List privs on columnsSELECT table_schema, table_name, column_name, privilege_type FROM information_schema.column_privileges;
List DBA Accounts (PRIV)
SELECT grantee, privilege_type, is_grantable FROM information_schema.user_privileges WHERE privilege_type ='SUPER';SELECT host, user FROM mysql.user WHERE Super_priv ='Y';
Current Database
SELECTdatabase();
List Databases
SELECT schema_name FROM information_schema.schemata;SELECT distinct(db) FROM mysql.db
List Tables
SELECT table_schema,table_name FROM information_schema.tables WHERE table_schema != 'mysql' AND table_schema != 'information_schema'
List Columns
SELECT table_schema, table_name, column_name FROM information_schema.columns WHERE table_schema != 'mysql' AND table_schema != 'information_schema'
Find Tables from Column Name
#If you want to list all the table names that contain a column LIKE'%password%':SELECT table_schema, table_name FROM information_schema.columns WHERE column_name ='password';
Hostname, IP Address
SELECT @@hostname;
Create Users (PRIV)
CREATEUSERtest1 IDENTIFIED BY'pass1';
Delete Users (PRIV)
DROPUSER test1;
Make User DBA (PRIV)
GRANT ALL PRIVILEGES ON*.*TO test1@'%';
Location of DB Files
SELECT @@datadir;
Read Files (PRIV)
SELECT LOAD_FILE('/etc/passwd');
Write Files (PRIV)
SELECT*FROM mytable INTO dumpfile '/tmp/somefile';
