发表新帖
发表新帖

How can I test my PHP MySQL injection example?

前端 未结
关注
2 678
谎友^
谎友^ 2021-01-03 21:57

I want to use PHP/Mysql injection with a login example, my code is below.

I have tried with a username of anything\' -- and an empty password but it doe

相关标签:
2条回答
  • 萌比男神i
    2021-01-03 22:14

    One of the most common examples is this query:

    ' or '1'='1

    If you enter this as the username and password into some unsanitized login input the query changes like so:

    Original: SELECT * FROM USERS WHERE USER='' AND PASS='';
Modified: SELECT * FROM USERS WHERE USER='' or '1'='1' AND PASS='' or '1'='1';

    This causes each thing its looking for to be true, as 1 will always equal 1. Problem with this method is it does not allow the selection of a particular user. Doing so you need to make it ignore the AND statement by commenting it out as seen in other examples.

    0 讨论(0)
  • 北海茫月
    2021-01-03 22:18

    If the value of username is:

     $_POST['user'] = "1' OR 1 LIMIT 1; --";

    Then the mysql query becomes:

    select * 
from zend_adminlist 
where user_name = '1' OR 1 LIMIT 1; --' and password = '$pass'
    0 讨论(0)
 看不清?
提交回复
热议问题