Å×ÀÌºí ³»¿ëÀ» ÆÄÀÏ·Î Ãâ·ÂÇϱâ
select * into outfile 'ÆÄÀϸí' from Å×À̺í¸í
If you want to copy a file from the server in other location you can use
select load_file('source_file') into OUTFILE 'target_file'
Security issue on windows ... you can copy any file from any folder even if you don't have access to that file
to an convenient folder where you have access !!
Example 1: Use php://input to read the POST data
<
?php // Insecure Include // The following Include statement will // include and execute everything
?POSTed // to the server include "php://input";?>
Example 2: Use data: to Include arbitrary code
<
?php // Insecure Include // The following Include statement will // include and execute the base64 encoded // payload. Here this is just phpinfo() include "data:;base64,
?PD9waHAgcGhwaW5mbygpOz8+";?>
MySQL Tips