{"blog_url":"https://blog.hamayanhamayan.com/","provider_url":"https://hatena.blog","type":"rich","html":"<iframe src=\"https://hatenablog-parts.com/embed?url=https%3A%2F%2Fblog.hamayanhamayan.com%2Fentry%2F2020%2F08%2F12%2F190951\" title=\"phantom [LORD OF SQLINJECTION] - \u306f\u307e\u3084\u3093\u306f\u307e\u3084\u3093\u306f\u307e\u3084\u3093\" class=\"embed-card embed-blogcard\" scrolling=\"no\" frameborder=\"0\" style=\"display: block; width: 100%; height: 190px; max-width: 500px; margin: 10px 0px;\"></iframe>","title":"phantom [LORD OF SQLINJECTION]","blog_title":"\u306f\u307e\u3084\u3093\u306f\u307e\u3084\u3093\u306f\u307e\u3084\u3093","author_name":"hamayanhamayan","author_url":"https://blog.hatena.ne.jp/hamayanhamayan/","description":"Lord of SQLInjection <?php include \"./config.php\"; login_chk(); $db = dbconnect(\"phantom\"); if($_GET['joinmail']){ if(preg_match('/duplicate/i', $_GET['joinmail'])) exit(\"nice try\"); $query = \"insert into prob_phantom values(0,'{$_SERVER[REMOTE_ADDR]}','{$_GET[joinmail]}')\"; mysqli_query($db,$query)\u2026","image_url":null,"categories":["Security"],"version":"1.0","height":"190","published":"2020-08-12 19:09:51","url":"https://blog.hamayanhamayan.com/entry/2020/08/12/190951","width":"100%","provider_name":"Hatena Blog"}