当前位置:网站首页>Record an edu, SQL injection practice
Record an edu, SQL injection practice
2022-07-06 14:07:00 【Lazy and talented】
Catalog
0x01 Ideas :inurl: exam result
0x01 Ideas :inurl: exam result
( There is a high possibility of vulnerability )
For probe rad Reptiles +jsfinder Crawl to the query interface post
This function has sql select sentence ( If the filtration is not rigorous, there is a greater possibility of injection )
js front end : ID number is checked at the front end 18 position Only by bypassing can you grab the bag
0x02 Judgment injection
Normal contracting
Single quotation marks synax Grammar mistakes
0x03 An error injection
0x04 sqlmap
Throw the rest directly to sqlmap Run inside
边栏推荐
猜你喜欢
Difference and understanding between detected and non detected anomalies
网络基础详解
Hackmyvm target series (6) -videoclub
HackMyvm靶机系列(1)-webmaster
Intranet information collection of Intranet penetration (I)
1143_ SiCp learning notes_ Tree recursion
Detailed explanation of network foundation
撲克牌遊戲程序——人機對抗
Tencent map circle
内网渗透之内网信息收集(五)
随机推荐
Interpretation of iterator related "itertools" module usage
msf生成payload大全
SRC挖掘思路及方法
【数据库 三大范式】一看就懂
实验五 类和对象
4. Branch statements and loop statements
1. First knowledge of C language (1)
Wei Shen of Peking University revealed the current situation: his class is not very good, and there are only 5 or 6 middle-term students left after leaving class
Renforcer les dossiers de base de l'apprentissage
【MySQL数据库的学习】
2. First knowledge of C language (2)
XSS之冷门事件
Attack and defense world misc practice area (simplerar, base64stego, no matter how high your Kung Fu is, you are afraid of kitchen knives)
攻防世界MISC练习区(SimpleRAR、base64stego、功夫再高也怕菜刀)
网络基础之路由详解
7-5 staircase upgrade (PTA program design)
Implementation of count (*) in MySQL
强化学习基础记录
HackMyvm靶机系列(5)-warez
Poker game program - man machine confrontation