• Home
  • About
    • PI photo

      PI

      Beginner's Blog

    • Learn More
    • Github
  • Posts
    • All Posts
    • All Tags
    • All Categories
  • Projects

[CTF] CTF 문제 풀이: SQL Injection

📆 Created: 2024.12.09 Mon

Reading time ~1 minute

login.php

mypage.php

notice_list.php

request

  1. option_val: username, title, content
  2. board_result: var select col from table where ‘1’ = ‘1’ and ‘content’ like ‘%board_result%’

a%’ and ‘1%’ = ‘1 option_val=title board_result= board_search=%F0%9F%94%8D date_from= date_to=


TILWEB Share Tweet +1
/#disqus_thread