SQL注入

SQL基础

image-20250805203728790

image-20250805203740506

image-20250805203749299

image-20250805203756592

image-20250805203805424

image-20250805203812079

image-20250805203818929

image-20250805203825199

image-20250805203831573

image-20250805203838465

image-20250805203846254

SQL注入

image-20250805203911624

image-20250805203918221

image-20250805203924437

image-20250805203930796

image-20250805203936283

image-20250805203941443

拿到表名和列名

image-20250805204012184

image-20250805204017375

image-20250805204023427

image-20250805204029193

image-20250805204035114

Updatexml注入

image-20250805204119442

image-20250805204124518

image-20250805204136557

Floor注入

image-20250805204159816

image-20250805204204946

image-20250805204213327

image-20250805204219708

image-20250805204225517

1
2
3
Rand()里面写‘0’就会报错,从而达到目的

Rand()里面写‘1’就会一直不报错

image-20250805204309379

布尔盲注

1
2
3
?id=1and ascii(substring((select database()),1,1))>=100

多次尝试将目标database名称一个个拼接出来

image-20250805204406387

时间盲注

image-20250805204421285

,绕过

image-20250805204443566