我有话说:





已有留言:
have a test
have a test
test more
'and/**/extractvalue(1,concat(char(126),md5(1143535400)))and'
"and/**/extractvalue(1,concat(char(126),md5(1871220316)))and"
extractvalue(1,concat(char(126),md5(1459864608)))
'and(select'1'from/**/cast(md5(1794525067)as/**/int))>'0
/**/and/**/cast(md5('1230079346')as/**/int)>0
convert(int,sys.fn_sqlvarbasetostr(HashBytes('MD5','1698795931')))
'and/**/convert(int,sys.fn_sqlvarbasetostr(HashBytes('MD5','1416169612')))>'0
鎈'"\(
'"\(
'and'i'='i
'and'w'='g
"and"m"="m
"and"c"="r
'and(select*from(select+sleep(0))a/**/union/**/select+1)='
'and(select*from(select+sleep(2))a/**/union/**/select+1)='
"and(select*from(select+sleep(0))a/**/union/**/select+1)="
"and(select*from(select+sleep(2))a/**/union/**/select+1)="
'/**/and(select'1'from/**/pg_sleep(0))>'0
'/**/and(select'1'from/**/pg_sleep(2))>'0
'and(select+1)>0waitfor/**/delay'0:0:0
'and(select+1)>0waitfor/**/delay'0:0:2
'/**/and/**/DBMS_PIPE.RECEIVE_MESSAGE('m',0)='m
'/**/and/**/DBMS_PIPE.RECEIVE_MESSAGE('k',2)='k