Visit the Insert module on the home page, http://127.0.0.1/sql/insert.php, and start testing the Insert module.
Insert statement:
The parameters that are received may be stitched to either of the "" positions in the preceding statement.
Here we generally use
1, Error injection
2. Blinds (Boolean type, time delay type)
Some injection points can be injected at the same time using multiple methods, and only one is shown here.
The following shows the methods injected into different locations.
One, Value (string)
To construct a POC:
' or Updatexml (1,concat (0x7e, (Database ()), 0x7e), 0) or '
For example, get the database name Sqlol
Second, Value (int)
To construct a POC:
"Or Extractvalue (1,concat (0x7e,database ())) or"
For example, get database sqlol in test
Third, Column Name
According to the syntax of the INSERT statement,
INSERT into Users ("1", ISAdmin) VALUES (' haxotron9000 ', 0)
Injection position in the "1", I can think of the use of two kinds of ways,
1, find other users in the columns, directly inserted values, resulting in garbage data, causing trouble to users;
2, comments out the following statements, the freedom to construct SQL statements.
Iv. Table Name
Injection point position at "1"
INSERT into "1" (username, ISAdmin) VALUES (' haxotron9000 ', 0)
Directly comment out the following statement, you can insert data into any table.
SQL injection test Platform Sqlol-3.insert injection test