1、 http://172.16.108.111/admin Login to the background
Added administrator to use burpsuite for packet capture
The request was made using the following payload, with a success delay of 5 seconds
sqlmap
Parameter A_newsauth
Parameter A_bbsauth
Parameter A_productauth
Parameter A_textauth
Parameter A_formauth
Locate Ajax.php by source code
The filter file is functions.php.
All POST requests go through the check_input function
If it's an array, it will bypass the filtering rules.
The data is returned and then iterated and spliced leading to SQL injection