发表新帖

发表新帖

Site has been hacked via SQL Injection

前端未结

关注

 7  1229

难免孤独 2020-12-04 18:09

Recently my site was hacked via SQL injection. The hacker used the following query to get my DB name. I cannot understand this query they wrote.

Query:

7条回答

温柔的废话 (楼主)

2020-12-04 18:44
```
-999.9 UNION ALL SELECT 
CONCAT('Hex(cast(database() as char))'),
0x31303235343830303536,
0x31303235343830303536,
0x31303235343830303536
```
I think you must have other entries in your log, if not he knew before hand that you have 3 columns.
0 讨论(0)

查看其它7个回答
发布评论:

提交评论
- 加载中...

热议问题