基本理念
直接将输入的参数拼接到 sql 查询代码里面, 导致执行了危险的查询语句。
- link: http://example.com/2024/09/26/DVWA:SQL-Injection/
- Copyright notice: All articles on this website, unless otherwise stated, adopt CC BY-NC-ND 4.0 reprint policy. If reproduced, please indicate source!
catalog
catalog