当前位置:网站首页>Record an edu, SQL injection practice
Record an edu, SQL injection practice
2022-07-06 14:07:00 【Lazy and talented】
Catalog
0x01 Ideas :inurl: exam result
0x01 Ideas :inurl: exam result
( There is a high possibility of vulnerability )
For probe rad Reptiles +jsfinder Crawl to the query interface post
This function has sql select sentence ( If the filtration is not rigorous, there is a greater possibility of injection )
js front end : ID number is checked at the front end 18 position Only by bypassing can you grab the bag
0x02 Judgment injection
Normal contracting
Single quotation marks synax Grammar mistakes
0x03 An error injection
0x04 sqlmap
Throw the rest directly to sqlmap Run inside
边栏推荐
- HackMyvm靶机系列(1)-webmaster
- Experiment 9 input and output stream (excerpt)
- Hackmyvm target series (1) -webmaster
- HackMyvm靶机系列(2)-warrior
- Simply understand the promise of ES6
- HackMyvm靶机系列(3)-visions
- 渗透测试学习与实战阶段分析
- Hackmyvm target series (4) -vulny
- [MySQL table structure and integrity constraint modification (Alter)]
- 7-1 output all primes between 2 and n (PTA programming)
猜你喜欢
随机推荐
Renforcer les dossiers de base de l'apprentissage
Attach the simplified sample database to the SQLSERVER database instance
How to turn wechat applet into uniapp
HackMyvm靶机系列(5)-warez
A complete collection of papers on text recognition
外网打点(信息收集)
实验四 数组
Hackmyvm target series (2) -warrior
Force deduction 152 question multiplier maximum subarray
Network layer - simple ARP disconnection
Experiment 8 exception handling
中间件漏洞复现—apache
搭建域环境(win)
Using qcommonstyle to draw custom form parts
1143_ SiCp learning notes_ Tree recursion
MSF generate payload Encyclopedia
【MySQL-表结构与完整性约束的修改(ALTER)】
Strengthen basic learning records
Mixlab unbounded community white paper officially released
Hackmyvm target series (3) -visions