SQL注入漏洞测试
--Write Up
题目用到的工具
AES加密网站:
http://tool.chacuo.net/cryptaes
BASE64加密网站:
https://www.sojson.com/base64.html
MD5加密网站:
https://www.cmd5.com/
1.靶场
https://www.mozhe.cn/bug/detail/SjRRVFpOQWlLWDBJd3hzNGY5cFBiQT09bW96aGUmozhe
2.题目地址
http://219.153.49.228:49104/,使用御剑扫描得到
3.访问扫到的目录地址
http://219.153.49.228:49104/news/