http://www.hackerschool.org/HS_Boards/zboard.php?id=QNA_Web&no=107 [º¹»ç]
id : admin
pw : 'or1=1--
select * from member where id='admin' and pass = ''or 1=1--'
¾ÏÈ£¿¡ 'or 1=1-- ±¸¹®À» ³ÖÀ¸¸é À§¿Í °°Àº sql±¸¹®ÀÌ ³ª¿À´Â°Å ¸ÂÁÒ?
Á¦ »ý°¢¿¡´Â ¾ÆÀ̵ð´Â admin ÀÌ°í, Æнº¿öµå´Â °ªÀÌ ¾Èµé¾î°¡´Â
°Å ¾Æ´Ñ°¡¿ä? ±×·¯¸é À̶§ ¾ÏÈ£°¡ ¾ø´Ù°í ¶ß´Â°ÇÁö ¾Æ´Ï¸é..
null°ª ÀÚüµµ ÀνÄÇؼ null °ªÀ» ¹Þ¾Æ ¾ÆÀ̵ð¿Í Æнº¿öµå ºñ±³Çؼ °ÅÁþÀ¸·Î ³ª¿À°í
±×´ÙÀ½ 1=1 °ú ºñ±³Çؼ °á±¹ ÂüÀÌ ³ª¿Í Á¶°ÇÀ» µ¹·ÁÁشٴ ¶æÀΰ¡¿ä?
p.s
select * from member where id='admin' and pass = '1313'or1=1--'
¿Ö À̱¸¹®ÀÌ ¾ç½ÄÀÌ Æ²¸°°Ç°¡¿ä? |
Hit : 3413 Date : 2012/04/07 11:50
|