{"categories":["Security"],"description":"Lord of SQLInjection include \"./config.php\"; login_chk(); $db = dbconnect(); if(strlen($_GET[shit])>1) exit(\"No Hack ~_~\"); if(preg_match('/ |\\n|\\r|\\t/i', $_GET[shit])) exit(\"HeHe\"); $query = \"select 1234 from{$_GET[shit]}prob_giant where 1\"; echo \"
query : {$query}
\"; $re\u2026","published":"2020-08-11 14:44:41","author_name":"hamayanhamayan","url":"https://blog.hamayanhamayan.com/entry/2020/08/11/144441","blog_url":"https://blog.hamayanhamayan.com/","image_url":null,"version":"1.0","title":"giant [LORD OF SQLINJECTION]","provider_name":"Hatena Blog","provider_url":"https://hatena.blog","width":"100%","blog_title":"\u306f\u307e\u3084\u3093\u306f\u307e\u3084\u3093\u306f\u307e\u3084\u3093","height":"190","author_url":"https://blog.hatena.ne.jp/hamayanhamayan/","type":"rich","html":""}