园龄：1年7个月粉丝：6 关注：0

随笔分类 - 漏洞学习

超详细的SQL注入漏洞学习

摘要：SQL注入漏洞 1.SQL注入简述 SQL注入漏洞是服务器在处理SQL语句时错误的拼接用户提交的参数，打破了原有的SQL语句的逻辑，导致攻击者可以掌握SQL的执行效果的一类安全问题。例如，有一条sql语句如下： select*from students where username='张三'

962

1

0

摘要：命令执行漏洞 1.形成原因应用有些时候需要调用一些执行系统命令的函数，但是开发人员并没有对用户输入的参数进行严格的过滤（一切输入都是有害的），导致用户可以控制这些参数，并将恶意系统命令拼接到正常系统命令中，从而造成命令执行攻击，这就是命令执行漏洞（RCE）。只有在网站程序开发时提供了执行

150

0

0

SSTI模版注入

摘要：SSTI模版注入模板引擎模板引擎是为了使用户界面与业务数据分离而产生的，他可以生成特定格式的文档，利用模版引擎来生成前端的html代码，模版引擎会提供一套生成html代码的程序，然后只需要获取用户的数据，然后放到渲染函数里，然后生产模版+用户数据的前端html页面，然后反馈给浏览器，呈现在用

283

0

0

随笔：14
文章：0
评论：1
阅读：4686

公告

昵称： fan高
园龄： 1年7个月
粉丝： 6
关注： 0

<

2025年3月

>

日

一

二

三

四

五

六

23

24

25

26

27

28

1

2

3

4

5

6

7

8

9

10

11

12

13

14

15

16

17

18

19

20

21

22

23

24

25

26

27

28

29

30

31

1

2

3

4

5

随笔分类

随笔档案

阅读排行榜

评论排行榜

1. 超详细的SQL注入漏洞学习(1)

最新评论

1 I Really Want to Stay At Your House Rosa Walton,Hallie Coggins

I Really Want to Stay At Your House - Rosa Walton,Hallie Coggins

00:00 / 00:00

An audio error has occurred.

作曲 : Rosa Walton

编曲 : Rosa Walton

I couldn't wait for you to come clear the cupboards

But now you're going to leave with nothing but a sign

Another evening I'll be sitting reading in between your lines

Because I miss you all the time

So, get away

So, get away

Another way to feel what you didn't want yourself to know

And let yourself go

You know you didn't lose your self-control

let's start at the rainbow

Turn away

Another way to be where you didn't want yourself to go

Let yourself go

Is that a compromise

So what do you wanna do, what's your point-of-view

So what do you wanna do, what's your point-of-view

There's a party soon do you wanna go

A handshake with you, what's your point-of-view

I'm on top of you, I don't wanna go

'Cause I really wanna stay at your house

And I hope this works out

But you know how much you broke me apart

I'm done with you, I'm ignoring you

I don't wanna know

And I'm aware that you were lying in the gutter

And I'm aware that you were lying in the gutter

'Cause I did everything to be there by your side-ide

So when you tell me I'm the reason I just can't believe the lies

And why do I so want to call you

So what do you wanna do, what's your point-of-view

So what do you wanna do, what's your point-of-view

There's a party soon do you wanna go

A handshake with you, what's your point-of-view

I'm on top of you, I don't wanna go

'Cause I really wanna stay at your house

And I hope this works out

But you know how much you broke me apart

I'm done with you, I'm ignoring you

I don't wanna know

You

You

Oh-oh-oh

I don't know why I'm no-one

So, get away

So, get away

Another way to feel what you didn't want yourself to know

And let yourself go

You know you didn't lose your self-control

Let's start at the rainbow

Turn away

Another way to be where you didn't want yourself to go

Let yourself go

Is that a compromise

So what do you wanna do, what's your point-of-view

So what do you wanna do, what's your point-of-view

There's a party soon do you wanna go

A handshake with you, what's your point-of-view

I'm on top of you, I don't wanna go

'Cause I really wanna stay at your house

and I hope this works out

But you know how much you broke me apart

I'm done with you, I'm ignoring you

I don't wanna know