HEAD-round use -POST injection injection injection head

Others 2019-08-05 01:37:58 views: null

HEAD-round use -POST injection injection injection head

A, POST injection introduction

Essence injection attacks, user data is input as a code execution.

 

There are two key conditions:

 

The first user is able to control the input

The second is the code of the original program to be executed, stitching the data entered by the user

 

POST injection is a form of injection, I believe we all know POST \ GET parameter passing two kinds of ways.

POST injection is carried out using POST parameter passing injection, no difference between the nature and type of GET

POST-risk injection point:

Login box

Query box

There are boxes and other interactive database

 

POST injection than most classic universal password

'or 1=1#

 

How Sqlmap be injected into the type of SQL injection POST

       --forms sqlmap to read the page POST form parameter passing Parameter name and then pass SQL injection

       -r 1.txt sqlmap read packet files SQL injection, injection can play at a number of tests that point * Tell Sqlmap

 

Two, Head injected introduction

PHP global variables - superglobals

Many PHP predefined variables are "super-global", which means they are available in all scopes of a script.

These super-global variables are:

$ _REQUEST (get GET / POST / COOKIE) COOKIE in the new version has been unable to get the

$ _POST (acquisition POST parameter passing)

$ _GET (pass a GET parameter)

$ _COOKIE (get the value of COOKIE)

$ _SERVER (such as header information comprising (header), a path (path), and the position of the script (script locations) array of information and the like)

$ _SERVER powerful.

$ _SERVER [ 'HTTP_HOST'] Host request header in the content, acquires the current domain.

$ _SERVER [ "HTTP_USER_AGENT"] to obtain user information, including the user's browser, operating system and other information.

$ _SERVER [ "REMOTE_ADDR"] Users browse the web ip.

 

updatexml () function to update xml document

Syntax: updatexml (target content xml, xml document path, updated content)

updatexml(1,concat(0x7e,(SELECT database()),0x7e),1)

In fact here is to update the XML document, but we write a sub-query in the path of the location of the XML documents inside, we enter special characters, and then enter because they do not comply with the rules and then being given a

But given the fact he has performed the sub-query code!

 

Guess you like

Origin www.cnblogs.com/J-zhy/p/11299403.html
Recommended
Ranking
error: (-215:Assertion failed) !_img.empty() in function ‘cv::imwrite‘
Database migration between Navicat servers
Minimum number of rotation of the array: Array
balenaEtcher for mac (make a boot disk software) v1.5.67
Custom processing serialization and deserialization in jackson
Mu-en-mask system development software
Mastering Regular Expressions
Find mileage Java--
Web pages can not directly concern the public micro-channel number how to do? A key to arouse public concern number of micro-channel solutions
[CodeForces - 739B] Alyona and a tree Tree + [difference] + bipartite
Daily
More
2024-05-12(28)
2024-05-11(32)
2024-05-10(34)
2024-05-09(32)
2024-05-08(18)
2024-05-07(34)
2024-05-06(6)
2024-05-05(0)
2024-05-04(18)
2024-05-03(8)

Code World

© 2018 codetd.com