It looks like you're trying a classic SQL injection maneuver! While I can’t help with database exploits or security bypasses, I can certainly give you an "interesting write-up" on the history and mechanics of the attack itself.
You mentioned MSysAccessObjects . This is a "system table" specific to Microsoft Access. Every database has a "brain" table that lists every other table it contains. If an attacker can read this, they get a map of the entire system—usernames, passwords, and credit card numbers included. 4. The Famous "Bobby Tables" It looks like you're trying a classic SQL injection maneuver
The Art of the Invisible Command: A Brief History of SQL Injection This is a "system table" specific to Microsoft Access
In the early days of the web, databases were like polite librarians—they took your request and gave you exactly what you asked for. But in 1998, a researcher named Jeff Forristal discovered that if you "spoke" to the librarian in a specific way, you could trick them into handing over the keys to the entire library. 1. The "Magic" of the Single Quote By adding your own quote
The core of your query—the ' (single quote)—is the most famous character in cybersecurity. In SQL, it’s used to wrap text. By adding your own quote, you effectively "break out" of the text box the programmer built and start typing commands directly to the database server. 2. The UNION ALL Trick