RedTiger's Hackit Level 1
来源:互联网 发布:规范查询软件 编辑:程序博客网 时间:2024/06/04 00:30
测试发现cat = 1有返回,其他均报错
http://redtiger.labs.overthewire.org/level1.php?cat=1
其后接and 1 =1 和 and 1= 2 有不同反馈,存在注入
union select 1,2,3,4 发现存在4列,显示第3、4列
尝试从information_sechema读取数据,提示disabled。
峰回路转,题目居然提示了表名为lever1_users
要填的是username和password,构造语句,真的是这样.....
0 0
- RedTiger's Hackit Level 1
- RedTiger's Hackit Level 2
- RedTiger's Hackit Level 3
- writeup--RedTiger's Hackit
- Hadoop's Tez: Whywinning Apache's top level status matters
- 2011: The Year of U.S. High-Level Synthesis Deployment
- What`s the Best Raid Level for ORACLE??
- 【C++】PAT(advanced level)1055. The World's Richest (25)*
- Pat(Advanced Level)Practice--1055(The World's Richest)
- PAT(Advanec Level) 1093. Count PAT's (25)
- Pat(Advanced Level)Practice--1093(Count PAT's)
- PAT (Advanced Level) Practise 1055 The World's Richest (25)
- PAT (Advanced Level) Practise 1093 Count PAT's (25)
- PAT (Advanced Level) Practise 1093 Count PAT's (25)
- PAT (Advanced Level) Practise 1055 The World's Richest (25)
- 【PAT】【Advanced Level】1055. The World's Richest (25)
- 【PAT】【Advanced Level】1093. Count PAT's (25)
- 【PAT】【Advanced Level】1116. Come on! Let's C (20)
- Java4android学习笔记25
- 基于会话的临时表和基于事务的临时表浅析
- 洛谷P1106 删数问题
- JSP笔记 No.1
- hdu - problem 1671 Phone List【字典树】
- RedTiger's Hackit Level 1
- android TV开发:实现3D仿Gallery效果
- hibernate问题易犯错误总结
- 织梦dedecms通过自定义字段数值大小调用文章列表并排序
- 第九周项目3-稀疏矩阵的三元组表示的实现及应用(1)
- 洛谷P1031 均分纸牌
- Android 图片裁剪
- 浏览器访问服务器时,都发生了什么?
- 孪生素数问题