SQL injection closure judgment

SQL Injection closure judgment

SQL Injection closure type

SQL There are three types of injection closure

Digital
Single quotation marks
Double quotes

And these three types can Infinite nested parentheses

SQL Inject int Type field query

For example, the database judgment field is int type Of , There is Implicit conversion You can use the above methods preliminary Judge the type of closure

Then through the above methods Whether to return a valid value , Judge Specific closure types

notes ： Why is it int Type ？

This is only applicable to front-end value transfer Numeric type Of , If the query condition is of character type , That closure can only be Single quotation marks And Double quotes 了 , And There is no implicit conversion , I can only try one by one

I can write a script to judge the closure , This is tentative , Add later