Ò׽ؽØͼÈí¼þ¡¢µ¥Îļþ¡¢Ãâ°²×°¡¢´¿ÂÌÉ«¡¢½ö160KB

¹È¸èɵ¹ÏʽSQL×¢Éä(Google dorks sql injection)

Google dorks sql injection:
inurl:index.php?id=  
inurl:trainers.php?id=  
inurl:buy.php?category=  
inurl:article.php?ID=  
inurl:Play_old.php?id=  
inurl:declaration_more.php?decl_id=  
inurl:Pageid=  
inurl:games.php?id=  
inurl:Page.php?file=  
inurl:newsDetail.php?id=  
inurl:gallery.php?id=  
inurl:article.php?id=  
inurl:show.php?id=  
inurl:staff_id=  
inurl:newsitem.php?num=  
inurl:readnews.php?id=  
inurl:top10.php?cat=  
inurl:historialeer.php?num=  
inurl:reagir.php?num=  
inurl:Stray-Questions-View.php?num=  
inurl:forum_bds.php?num=  
inurl:game.php?id=  
inurl:view_product.php?id=  
inurl:newsone.php?id=  
inurl:sw_comment.php?id=  
inurl:news.php?id=  
inurl:avd_start.php?avd=  
inurl:event.php?id=  
inurl:Product-item.php?id=  
inurl:sql.php?id=  
inurl:news_view.php?id=  
inurl:select_biblio.php?id=  
inurl:humor.php?id=  
inurl:aboutbook.php?id=  
inurl:fiche_spectacle.php?id=  
inurl:communique_detail.php?id=  
inurl:sem.php3?id=  
inurl:kategorie.php4?id=  
inurl:news.php?id=  
inurl:index.php?id=  
inurl:faq2.php?id=  
inurl:show_an.php?id=  
inurl:Preview.php?id=  
inurl:loadpsb.php?id=  
inurl:Opinions.php?id=  
inurl:spr.php?id=  
inurl:Pages.php?id=  
inurl:announce.php?id=  
inurl:clanek.php4?id=  
inurl:Participant.php?id=  
inurl:download.php?id=  
inurl:main.php?id=  
inurl:review.php?id=  
inurl:chappies.php?


Ïà¹ØÎĵµ£º

sqlÓï¾ä²éѯ±íµÄ×Ö¶ÎÃû

select name from syscolumns where id in (select id from sysobjects where type = 'u' and name = 'ÏàÓ¦±íÃû')  
ÓÃÒÔÉÏsqlÓï¾äÊäÈëÏàÓ¦±íÃû¾Í¿ÉÒԲ鵽±íµÄ×Ö¶ÎÃû£¬¶ÔÓ¦ºÃÊý¾Ý¿â ²éѯÊÇ·ñ´æÔڸñíÓï¾ä
if exists (select * from dbo.sysobjects where id = object_id(N'[dbo].[tb_cost]') and OBJECTPROPER ......

SQL ´óÈ« ÐÄÓêÖ®¼Ò

1.°´ÐÕÊϱʻ­ÅÅÐò:
Select * from TableName Order By CustomerName Collate Chinese_PRC_Stroke_ci_as
2.Êý¾Ý¿â¼ÓÃÜ:
select encrypt('ԭʼÃÜÂë')
select pwdencrypt('ԭʼÃÜÂë')
select pwdcompare('ԭʼÃÜÂë','¼ÓÃܺóÃÜÂë') = 1--Ïàͬ£»·ñÔò²»Ïàͬ encrypt('ԭʼÃÜÂë')
select pwdencrypt('ԭʼÃÜÂë')
select pw ......

SQL²éѯÓï¾ä£¨¹ØÓÚÖظ´Êý¾ÝµÄ£©

1¡¢²éѯ±íÖÐÖظ´Êý¾Ý¡£select * from people
where peopleId in (select  peopleId  from  people  group  by  peopleId  having  count(peopleId) > 1)
2¡¢É¾³ý±íÖжàÓàµÄÖظ´¼Ç¼£¬Öظ´¼Ç¼ÊǸù¾Ýµ ......

how things work : sql select statement


Ô­ÍøÕ¾ÎÞ·¨·ÃÎÊ£¬¹Ê±£Áôgoogle¿ìÕÕ
How things work : 
SQL
 
Select
 
Statement
Introduction
:
Ever asked your self how things work inside the 
SQL
 
Select
statement? In this article we won’t be talking about how to writeSQL
 
Select
 
statem ......
© 2009 ej38.com All Rights Reserved. ¹ØÓÚE½¡ÍøÁªÏµÎÒÃÇ | Õ¾µãµØͼ | ¸ÓICP±¸09004571ºÅ