웹 해킹/sqli-labs-master
Less6-GET-Double Injection-Double Quotes-String
sonysame
2019. 3. 4. 22:25
$id = '"'.$id.'"';
$sql="SELECT * FROM users WHERE id=$id LIMIT 0,1";
?id=" or "1"="1