收到一封这样的邮件

2020-04-01 18:05:06 +08:00
 iwantmoree

几年前用过 sqli-labs 作为学习用,但没弄明白,所以不了了之 前天收到一份这样的邮件,跟密码有关的 应该重视吗?

SETTING UP THE DATABASE SCHEMA AND POPULATING DATA IN TABLES:

\n";} else {echo "[]...................Error purging database: " . mysql_error(); echo " \n";} //Creating new database security $sql="CREATE database security CHARACTER SET gbk "; if (mysql_query($sql)) {echo "[]...................Creating New database 'SECURITY' successfully";echo " \n";} else {echo "[]...................Error creating database: " . mysql_error();echo " \n";} //creating table users $sql="CREATE TABLE security.users (id int(3) NOT NULL AUTO_INCREMENT, username varchar(20) NOT NULL, password varchar(20) NOT NULL, PRIMARY KEY (id))"; if (mysql_query($sql)) {echo "[]...................Creating New Table 'USERS' successfully";echo " \n";} else {echo "[]...................Error creating Table: " . mysql_error();echo " \n";} //creating table emails $sql="CREATE TABLE security.emails ( id int(3)NOT NULL AUTO_INCREMENT, email_id varchar(30) NOT NULL, PRIMARY KEY (id) )"; if (mysql_query($sql)) {echo "[]...................Creating New Table 'EMAILS' successfully"; echo " \n";} else {echo "[]...................Error creating Table: " . mysql_error();echo " \n";} //creating table uagents $sql="CREATE TABLE security.uagents ( id int(3)NOT NULL AUTO_INCREMENT, uagent varchar(256) NOT NULL, ip_address varchar(35) NOT NULL, username varchar(20) NOT NULL, PRIMARY KEY (id) )"; if (mysql_query($sql)) {echo "[]...................Creating New Table 'UAGENTS' successfully";echo " \n";} else {echo "[]...................Error creating Table: " . mysql_error();echo " \n";} //creating table referers $sql="CREATE TABLE security.referers ( id int(3)NOT NULL AUTO_INCREMENT, referer varchar(256) NOT NULL, ip_address varchar(35) NOT NULL, PRIMARY KEY (id) )"; if (mysql_query($sql)) {echo "[]...................Creating New Table 'REFERERS' successfully";echo " \n";} else {echo "[]...................Error creating Table: " . mysql_error();echo " \n";} //inserting data $sql="INSERT INTO security.users (id, username, password) VALUES ('1', 'Dumb', 'Dumb'), ('2', 'Angelina', 'I-kill-you'), ('3', 'Dummy', 'p@ssword'), ('4', 'secure', 'crappy'), ('5', 'stupid', 'stupidity'), ('6', 'superman', 'genious'), ('7', 'batman', 'mob!le'), ('8', 'admin', 'admin'), ('9', 'admin1', 'admin1'), ('10', 'admin2', 'admin2'), ('11', 'admin3', 'admin3'), ('12', 'dhakkan', 'dumbo'), ('14', 'admin4', 'admin4')"; if (mysql_query($sql)) {echo "[]...................Inserted data correctly into table 'USERS'";echo "

I think you have to check the password which you have given to the mysql and in the sqli-labs folder under db creds file

1167 次点击
所在节点    问与答
1 条回复
iwantmoree
2020-04-01 18:09:07 +08:00
别沉

这是一个专为移动设备优化的页面(即为了让你能够在 Google 搜索结果里秒开这个页面),如果你希望参与 V2EX 社区的讨论,你可以继续到 V2EX 上打开本讨论主题的完整版本。

https://www.v2ex.com/t/658399

V2EX 是创意工作者们的社区,是一个分享自己正在做的有趣事物、交流想法,可以遇见新朋友甚至新机会的地方。

V2EX is a community of developers, designers and creative people.

© 2021 V2EX