sql-labs 1关

image-20220322175551909

1.先判断闭合符号,单引号报错 http://45.32.113.109:11650/Less-1/?id=1'

在后面加上–+试一下http://45.32.113.109:11650/Less-1/?id=1'--+

image-20220322180024702

2.判断一下注入类型http://45.32.113.109:11650/Less-1/?id=1 and 1=1

http://45.32.113.109:11650/Less-1/?id=1 and 1=2

看页面回显位的反馈,如果一致,则是字符注入,否则是数字注入。

image-20220322180340433

image-20220322180427825

都显示正确,为字符注入

3.判断列数

image-20220322180825723

image-20220322180859130

image-20220322180928019

image-20220322181000638

从1到3试了都正确,但大于3后就超出该数据库列的个数,列的个数为3

4.爆数据库

image-20220322181512472

5.爆数据表/查询表名

image-20220322181711810

image-20220322182721940

6.爆字段/查询列名

image-20220322182042257

image-20220322182932858

7.爆值/查询数据

image-20220322182226222