Home > database >  Have bosses know into the back of the - what is the meaning of ah,
Have bosses know into the back of the - what is the meaning of ah,

Time:09-28

I am a novice is really don't understand, why SQL injection use +, - why - complains, plus + good?

CodePudding user response:

You want to get at least a reproducible environment, test for everyone,

You put the relevant statements come,

CodePudding user response:

So, your statement?

CodePudding user response:

reference 1/f, gypsy song response:
at least you want to make a reproducible environment, test for everyone,

You put the relevant statements come,

http://127.0.0.1/sqllib/Less-1/? Id=1 "this save, plus - and save, - + is not saved, -- I know it's comments, the + what role

CodePudding user response:

refer to the second floor selling fruit net reply:
, then, your statement?

http://127.0.0.1/sqllib/Less-1/? Id=1 - +

CodePudding user response:

reference 1/f, gypsy song response:
at least you want to make a reproducible environment, test for everyone,

You put the relevant statements come,

http://127.0.0.1/sqllib/Less-1/? Id=1 '
This error, add - and error, use - + is not an error, -- I know it's comments, the + what role

CodePudding user response:

reference 5 floor qq_44574465 reply:
Quote: refer to 1st floor gypsy song response:
at least you want to make a reproducible environment, test for everyone,

You put the relevant statements come,

http://127.0.0.1/sqllib/Less-1/? Id=1 '
This error, add - and error, use - + is not an error, -- I know it's comments, the + what role


Do you want the tracer, breaking point single-step tracking, have a look at the final SQL is what kind of, or do processing program midway?

CodePudding user response:

refer to 6th floor gypsy song response:
Quote: refer to the fifth floor qq_44574465 reply:

Quote: refer to 1st floor gypsy song response:
at least you want to make a reproducible environment, test for everyone,

You put the relevant statements come,

http://127.0.0.1/sqllib/Less-1/? Id=1 '
This error, add - and error, use - + is not an error, -- I know it's comments, the + what role


Do you want the tracer, breaking point single-step tracking, have a look at the final SQL is what kind of, or do processing program midway?

It is injected into practice, sqli, who wrote for practice of SQL injection site, I just don't understand - +,

CodePudding user response:

refer to 7th floor qq_44574465 response:
Quote: refer to the sixth floor of gypsy song response:
Quote: refer to fifth floor qq_44574465 response:

Quote: refer to 1st floor gypsy song response:
at least you want to make a reproducible environment, test for everyone,

You put the relevant statements come,

http://127.0.0.1/sqllib/Less-1/? Id=1 '
This error, add - and error, use - + is not an error, -- I know it's comments, the + what role


Do you want the tracer, breaking point single-step tracking, have a look at the final SQL is what kind of, or do processing program midway?

It is injected into practice, sqli, bosses for practice of SQL injection site, I just don't understand - +,

You don't tracking code, how to know the final SQL, how do you know the program is how to deal with it?
For example: the program will remove the last character, still feel strange?

CodePudding user response:

reference gypsy song on the eighth floor response:
Quote: refer to 7th floor qq_44574465 response:

Quote: refer to the sixth floor of the gypsy song response:
Quote: refer to the fifth floor qq_44574465 reply:

Quote: refer to 1st floor gypsy song response:
at least you want to make a reproducible environment, test for everyone,

You put the relevant statements come,

http://127.0.0.1/sqllib/Less-1/? Id=1 '
This error, add - and error, use - + is not an error, -- I know it's comments, the + what role


Do you want the tracer, breaking point single-step tracking, have a look at the final SQL is what kind of, or do processing program midway?

It is injected into practice, sqli, bosses for practice of SQL injection site, I just don't understand - +,

You don't tracking code, how to know the final SQL, how do you know the program is how to deal with it?
For example: the program will remove the last character, still feel strange?

Ok, I'll caught the next process,

CodePudding user response:

You this problem, the more strange,

To comment, when used in SQL injection, are in use at the end bottom, purpose is to void the latter part of the original SQL statement,

The + - +, should is ineffective, with and without
should be the same!

Page link:https//www.codepudding.com/database/39171.html

Prev:SQL Server database
Next:T_ string_agg function after how to weigh?
  • Related

About Us:  Contact Us      Terms of Service       Privacy Policy

Copyright © 2010-2023,Powered By CodePudding