{"width":"100%","provider_url":"https://hatena.blog","title":"\u3084\u3089\u308c\u30a2\u30d7\u30ea BadTodo - 3.6 SQL\u30a4\u30f3\u30b8\u30a7\u30af\u30b7\u30e7\u30f3 MariaDB\u306e\u30d1\u30b9\u30ef\u30fc\u30c9\u53d6\u5f97","blog_url":"https://www.demandosigno.study/","categories":["BadTodo","SQL Injection"],"author_url":"https://blog.hatena.ne.jp/demandosigno/","description":"\u524d\u56de\uff1a\u3084\u3089\u308c\u30a2\u30d7\u30ea BadTodo - 3.5 SQL\u30a4\u30f3\u30b8\u30a7\u30af\u30b7\u30e7\u30f3 \u60c5\u5831\u306e\u6539\u3056\u3093\u30fb\u8ffd\u52a0\u30fb\u524a\u9664 - demandosigno MariaDB\u306e\u30d0\u30fc\u30b8\u30e7\u30f3\u306e\u8868\u793a SELECT @@version; ' UNION SELECT null,null,@@version,null,null,null,null,null,null,null# passwd\u30d5\u30a1\u30a4\u30eb\u306e\u8868\u793a SELECT LOAD_FILE(); \u6587\u5b57\u5217\u95a2\u6570 LOAD_FILE \u3092\u4f7f\u7528\u3057\u3066\u30b5\u30fc\u30d0\uff08\u30b3\u30f3\u30c6\u30ca badtodo-db\uff09\u306e /etc/passwd \u3092\u8868\u793a\u3059\u308b\u3002 ' UNION SELECT null,null,LOAD_FILE\u2026","provider_name":"Hatena Blog","version":"1.0","type":"rich","html":"<iframe src=\"https://hatenablog-parts.com/embed?url=https%3A%2F%2Fwww.demandosigno.study%2Fentry%2F2023%2F08%2F17%2F083111\" title=\"\u3084\u3089\u308c\u30a2\u30d7\u30ea BadTodo - 3.6 SQL\u30a4\u30f3\u30b8\u30a7\u30af\u30b7\u30e7\u30f3 MariaDB\u306e\u30d1\u30b9\u30ef\u30fc\u30c9\u53d6\u5f97 - demandosigno\" class=\"embed-card embed-blogcard\" scrolling=\"no\" frameborder=\"0\" style=\"display: block; width: 100%; height: 190px; max-width: 500px; margin: 10px 0px;\"></iframe>","url":"https://www.demandosigno.study/entry/2023/08/17/083111","blog_title":"demandosigno","height":"190","image_url":"https://cdn-ak.f.st-hatena.com/images/fotolife/d/demandosigno/20230816/20230816052446.jpg","published":"2023-08-17 08:31:11","author_name":"demandosigno"}