非数字就是字符
数字型:select * from emails where id=1;
字符型:select * from emails where email_id
='Dumb@dhakkan.com';
request
:全部接收
对方是什么方式,就用什么方式去注入。
注释语句:--+,#
cookie
存在注入点:Cookie:uname=admin' AND 1=2 union select database(),2,3#
SELECT users.username, users.password FROM users WHEREusers.username='xiaodi' and users.password='xiaodi' ORDER BY users.id DESC LIMIT 0,1
手工就是抓包测