info testing mysql_诺亚舟教育网SQL注入漏洞(涉及近170w用户信息)

[!] legal disclaimer: Usage of sqlmap for attacking targets without prior mutual

consent is illegal. It is the end user's responsibility to obey all applicable

local, state and federal laws. Developers assume no liability and are not respon

sible for any misuse or damage caused by this program[*] starting at 17:34:59[17:35:00] [INFO] testing connection to the target URL

[17:35:01] [INFO] testing if the target URL is stable. This can take a couple of

seconds

[17:35:02] [INFO] target URL is stable

[17:35:02] [INFO] testing if POST parameter 'option' is dynamic

[17:35:02] [INFO] confirming that POST parameter 'option' is dynamic

[17:35:02] [WARNING] POST parameter 'option' does not appear dynamic

[17:35:02] [WARNING] heuristic (basic) test shows that POST parameter 'option' m

ight not be injectable

[17:35:02] [INFO] testing for SQL injection on POST parameter 'option'

[17:35:03] [INFO] testing 'AND boolean-based blind - WHERE or HAVING clause'

[17:35:04] [INFO] testing 'MySQL >= 5.0 AND error-based - WHERE or HAVING clause

'

[17:35:05] [INFO] testing 'PostgreSQL AND error-based - WHERE or HAVING clause'

[17:35:06] [INFO] testing 'Microsoft SQL Server/Sybase AND error-based - WHERE o

r HAVING clause'

[17:35:06] [WARNING] if you experience problems with non-ASCII identifier names

you are advised to rerun with '--tamper=charunicodeencode'

[17:35:07] [INFO] testing 'Oracle AND error-based - WHERE or HAVING clause (XMLT

ype)'

[17:35:07] [INFO] testing 'MySQL inline queries'

[17:35:07] [INFO] testing 'PostgreSQL inline queries'

[17:35:08] [INFO] testing 'Microsoft SQL Server/Sybase inline queries'

[17:35:08] [INFO] testing 'Oracle inline queries'

[17:35:08] [INFO] testing 'SQLite inline queries'

[17:35:08] [INFO] testing 'MySQL > 5.0.11 stacked queries'

[17:35:09] [INFO] testing 'PostgreSQL > 8.1 stacked queries'

[17:35:10] [INFO] testing 'Microsoft SQL Server/Sybase stacked queries'

[17:35:10] [INFO] testing 'MySQL > 5.0.11 AND time-based blind'

[17:35:11] [INFO] testing '

  • 0
    点赞
  • 0
    收藏
    觉得还不错? 一键收藏
  • 0
    评论

“相关推荐”对你有帮助么?

  • 非常没帮助
  • 没帮助
  • 一般
  • 有帮助
  • 非常有帮助
提交
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值