How to connect to a MariaDB database after collecting data about users and passwords with a SQLI?

Question

I'm trying to breach a dummy MariaDB database which is vulnerable to SQLI and is storing sensitive data about its users and their passwords. I've collected all the data I could collect, but now how am I supposed to connect to this database and tamper with it? I downloaded MySQL (MariaDB) and I was trying to connect to it by using Bash with this code:

mysql -h hostIPaddress -u username -D dbname -p

But I only get ERROR 2002 (HY000): Can't connect to MySQL server on hostIPaddress. What's the correct procedure?

score 1 · Answer 1 · answered Feb 14 '21 at 19:40

1

Most likely, you can only connect from localhost/127.0.0.1

answered Feb 14 '21 at 19:40

Kate

6,967
20
23

score 0 · Answer 2 · answered Feb 15 '21 at 00:15

If you are trying to tamper with the contents of that remote MariaDB database you will need to do it through the SQL injection.

Otherwise, if you are trying to connect to a locally-installed MariaDB instance you downloaded, you are probably connecting in the wrong way. Maybe the database server isn't running, or it needs to connect via a local socket rather than an ip address.

How to connect to a MariaDB database after collecting data about users and passwords with a SQLI?

2 Answers2