I didn't exactly understand it myself, but am I mistaken in thinking that it was crappily written SQL, especially the second one?
1) He tried to do a UNION, which usually requires that we have same numbers of column, which he has no idea, no?
2) "SELECT 1 FROM wp_users" is a odd construction, and IINM, would return "1" or nothing at all if there weren't any fields with name "1" (and why the heck would it be named "1")?
3) It looks as if he was trying to get the password for admin, but had to do some reverse, padding and other juggling all at once. ( I do know for a fact that if you have a Microsoft Word document that's locked with a password, you can just save it as XML, get something like password="XXX", then you reverse the XXX then using the hex editor, delete the reversed string to effectively unlock it- something to do with endianness, I guess.)
|