WeChall MySQL 注射题1
2014-09-26 本文已影响57人
Ryans
https://www.wechall.net/challenge/training/mysql/auth_bypass1/index.php
题目要求是,使用admin 的账号登录。关键源代码是
SELECT * FROM users WHERE username='$username' AND password='$password'
因此,注入的答案有几个
admin'#
admin' or '1'='1
'|0#
