{"id":18358,"date":"2025-07-06T21:57:39","date_gmt":"2025-07-06T13:57:39","guid":{"rendered":"https:\/\/92it.top\/?p=18358"},"modified":"2025-07-06T21:57:39","modified_gmt":"2025-07-06T13:57:39","slug":"sql%e6%b3%a8%e5%85%a5%e6%94%bb%e5%87%bb%ef%bc%9a%e5%8e%9f%e7%90%86%e5%88%86%e6%9e%90%e4%b8%8e%e9%98%b2%e6%8a%a4%e5%ae%9e%e6%88%98","status":"publish","type":"post","link":"https:\/\/92it.top\/?p=18358","title":{"rendered":"SQL\u6ce8\u5165\u653b\u51fb\uff1a\u539f\u7406\u5206\u6790\u4e0e\u9632\u62a4\u5b9e\u6218"},"content":{"rendered":"\n

\u8f6c\u8f7d\uff1aSQL\u6ce8\u5165\u653b\u51fb\uff1a\u539f\u7406\u5206\u6790\u4e0e\u9632\u62a4\u5b9e\u6218<\/a><\/p>\n\n\n\n

\u5728Web\u5b89\u5168\u9886\u57df\uff0cSQL\u6ce8\u5165\u4e00\u76f4\u662f\u6700\u5371\u9669\u7684\u5b89\u5168\u6f0f\u6d1e\u4e4b\u4e00\u3002\u636eOWASP\u7edf\u8ba1\uff0cSQL\u6ce8\u5165\u5e38\u5e74\u4f4d\u5c45Web\u5e94\u7528\u5b89\u5168\u5a01\u80c1\u699c\u9996\u3002\u672c\u6587\u5c06\u6df1\u5165\u5256\u6790SQL\u6ce8\u5165\u7684\u653b\u51fb\u539f\u7406\u3001\u5e38\u89c1\u7c7b\u578b\u548c\u9632\u62a4\u7b56\u7565\uff0c\u5e2e\u52a9\u5f00\u53d1\u8005\u6784\u5efa\u66f4\u52a0\u5b89\u5168\u7684\u5e94\u7528\u7cfb\u7edf\u3002<\/p>\n\n\n\n

\u4ec0\u4e48\u662fSQL\u6ce8\u5165<\/strong><\/p>\n\n\n\n

\n\n\n\n

1. SQL\u6ce8\u5165\u7684\u5b9a\u4e49<\/strong><\/p>\n\n\n\n

SQL\u6ce8\u5165\u662f\u4e00\u79cd\u4ee3\u7801\u6ce8\u5165\u6280\u672f\uff0c\u653b\u51fb\u8005\u901a\u8fc7\u5728\u5e94\u7528\u7a0b\u5e8f\u7684\u8f93\u5165\u5b57\u6bb5\u4e2d\u63d2\u5165\u6076\u610f\u7684SQL\u4ee3\u7801\uff0c\u4f7f\u5f97\u5e94\u7528\u7a0b\u5e8f\u6267\u884c\u975e\u9884\u671f\u7684\u6570\u636e\u5e93\u64cd\u4f5c\u3002\u8fd9\u79cd\u653b\u51fb\u5229\u7528\u4e86\u5e94\u7528\u7a0b\u5e8f\u5bf9\u7528\u6237\u8f93\u5165\u7f3a\u4e4f\u6709\u6548\u9a8c\u8bc1\u548c\u8fc7\u6ee4\u7684\u6f0f\u6d1e\u3002<\/p>\n\n\n\n

SQL\u6ce8\u5165\u7684\u6838\u5fc3\u95ee\u9898\u5728\u4e8e\uff1a\u7528\u6237\u8f93\u5165\u88ab\u5f53\u4f5cSQL\u4ee3\u7801\u7684\u4e00\u90e8\u5206\u6267\u884c<\/strong>\uff0c\u800c\u4e0d\u662f\u88ab\u5f53\u4f5c\u7eaf\u7cb9\u7684\u6570\u636e\u5904\u7406\u3002\u8fd9\u8fdd\u53cd\u4e86”\u4ee3\u7801\u4e0e\u6570\u636e\u5206\u79bb”\u7684\u57fa\u672c\u5b89\u5168\u539f\u5219\u3002<\/p>\n\n\n\n

\/\/ \u5b58\u5728SQL\u6ce8\u5165\u6f0f\u6d1e\u7684\u4ee3\u7801\u793a\u4f8b\npublic User getUserById(String userId) {\n    String sql = \"SELECT * FROM users WHERE id = \" + userId;\n    return jdbcTemplate.queryForObject(sql, User.class);\n}\n\n\/\/ \u5f53userId\u4e3a \"1 OR 1=1\" \u65f6\uff0c\u5b9e\u9645\u6267\u884c\u7684SQL\u4e3a\uff1a\n\/\/ SELECT * FROM users WHERE id = 1 OR 1=1\n\/\/ \u8fd9\u5c06\u8fd4\u56de\u6240\u6709\u7528\u6237\u6570\u636e\uff01<\/pre>\n\n\n\n
\u3000<\/p>\n\n\n\n
2. SQL\u6ce8\u5165\u7684\u5de5\u4f5c\u539f\u7406<\/strong><\/p>\n\n\n\n
SQL\u6ce8\u5165\u653b\u51fb\u7684\u57fa\u672c\u6d41\u7a0b\u5982\u4e0b\uff1a<\/p>\n\n\n
\n
\"\"<\/figure><\/div>\n\n\n
\u3000<\/p>\n\n\n\n
\u653b\u51fb\u8005\u901a\u8fc7\u7cbe\u5fc3\u6784\u9020\u7684\u8f93\u5165\uff0c\u6539\u53d8\u4e86SQL\u8bed\u53e5\u7684\u539f\u59cb\u903b\u8f91\uff0c\u4f7f\u6570\u636e\u5e93\u6267\u884c\u4e86\u975e\u9884\u671f\u7684\u64cd\u4f5c\u3002\u8fd9\u79cd\u653b\u51fb\u4e0d\u9700\u8981\u653b\u51fb\u8005\u76f4\u63a5\u8bbf\u95ee\u6570\u636e\u5e93\uff0c\u53ea\u9700\u8981\u901a\u8fc7Web\u5e94\u7528\u7a0b\u5e8f\u7684\u8f93\u5165\u63a5\u53e3\u5373\u53ef\u5b9e\u73b0\u3002<\/p>\n\n\n\n
\u3000<\/p>\n\n\n\n
SQL\u6ce8\u5165\u7684\u5371\u5bb3<\/strong><\/p>\n\n\n\n
\n\n\n\n
1. \u6570\u636e\u6cc4\u9732<\/strong><\/p>\n\n\n\n
SQL\u6ce8\u5165\u6700\u76f4\u63a5\u7684\u5371\u5bb3\u662f\u654f\u611f\u6570\u636e\u6cc4\u9732\u3002\u653b\u51fb\u8005\u53ef\u4ee5\u901a\u8fc7\u6ce8\u5165\u6076\u610f\u4ee3\u7801\uff0c\u7ed5\u8fc7\u8eab\u4efd\u9a8c\u8bc1\u548c\u8bbf\u95ee\u63a7\u5236\uff0c\u83b7\u53d6\u4e0d\u5e94\u8be5\u88ab\u8bbf\u95ee\u7684\u6570\u636e\u3002<\/p>\n\n\n\n
\/\/ \u767b\u5f55\u7ed5\u8fc7\u793a\u4f8b\npublic boolean login(String username, String password) {\n    String sql = \"SELECT COUNT(*) FROM users WHERE username = '\" \n                + username + \"' AND password = '\" + password + \"'\";\n    int count = jdbcTemplate.queryForObject(sql, Integer.class);\n    return count > 0;\n}\n\n\/\/ \u653b\u51fb\u8f93\u5165\uff1a\n\/\/ username: admin' --\n\/\/ password: \u4efb\u610f\u503c\n\/\/ \u5b9e\u9645\u6267\u884c\u7684SQL\uff1a\n\/\/ SELECT COUNT(*) FROM users WHERE username = 'admin' -- ' AND password = '\u4efb\u610f\u503c'\n\/\/ \u6ce8\u91ca\u7b26 -- \u4f7f\u5bc6\u7801\u9a8c\u8bc1\u5931\u6548\uff0c\u653b\u51fb\u8005\u6210\u529f\u7ed5\u8fc7\u767b\u5f55<\/pre>\n\n\n\n
\u3000<\/p>\n\n\n\n
2. \u6570\u636e\u7be1\u6539<\/strong><\/p>\n\n\n\n
\u653b\u51fb\u8005\u53ef\u4ee5\u901a\u8fc7SQL\u6ce8\u5165\u4fee\u6539\u3001\u5220\u9664\u6570\u636e\u5e93\u4e2d\u7684\u6570\u636e\uff0c\u7834\u574f\u6570\u636e\u5b8c\u6574\u6027\u3002<\/p>\n\n\n\n
\/\/ \u5b58\u5728\u6f0f\u6d1e\u7684\u66f4\u65b0\u64cd\u4f5c\npublic void updateUserProfile(String userId, String email) {\n    String sql = \"UPDATE users SET email = '\" + email + \"' WHERE id = \" + userId;\n    jdbcTemplate.update(sql);\n}\n\n\/\/ \u6076\u610f\u8f93\u5165\uff1a\n\/\/ email: test@example.com'; UPDATE users SET role = 'admin' WHERE id = 1; --\n\/\/ \u5b9e\u9645\u6267\u884c\u7684SQL\uff1a\n\/\/ UPDATE users SET email = 'test@example.com'; UPDATE users SET role = 'admin' WHERE id = 1; -- ' WHERE id = 2\n\/\/ \u653b\u51fb\u8005\u5c06\u7528\u6237ID\u4e3a1\u7684\u7528\u6237\u89d2\u8272\u4fee\u6539\u4e3a\u7ba1\u7406\u5458<\/pre>\n\n\n\n
\u3000<\/p>\n\n\n\n
3. \u7cfb\u7edf\u63a7\u5236<\/strong><\/p>\n\n\n\n
\u5728\u67d0\u4e9b\u60c5\u51b5\u4e0b\uff0c\u653b\u51fb\u8005\u751a\u81f3\u53ef\u4ee5\u901a\u8fc7SQL\u6ce8\u5165\u83b7\u5f97\u5bf9\u670d\u52a1\u5668\u7684\u63a7\u5236\u6743\u3002<\/p>\n\n\n\n
-- \u901a\u8fc7\u5b58\u50a8\u8fc7\u7a0b\u6267\u884c\u7cfb\u7edf\u547d\u4ee4\uff08SQL Server\u793a\u4f8b\uff09\n'; EXEC xp_cmdshell 'net user hacker password123 \/add'; --\n\n-- \u901a\u8fc7LOAD_FILE\u8bfb\u53d6\u7cfb\u7edf\u6587\u4ef6\uff08MySQL\u793a\u4f8b\uff09\n' UNION SELECT LOAD_FILE('\/etc\/passwd') --<\/pre>\n\n\n\n
\u3000<\/p>\n\n\n\n
4. \u62d2\u7edd\u670d\u52a1\u653b\u51fb<\/strong><\/p>\n\n\n\n
\u653b\u51fb\u8005\u53ef\u4ee5\u901a\u8fc7\u6ce8\u5165\u8d44\u6e90\u5bc6\u96c6\u578b\u7684SQL\u8bed\u53e5\uff0c\u5bfc\u81f4\u6570\u636e\u5e93\u670d\u52a1\u5668\u8fc7\u8f7d\uff0c\u9020\u6210\u62d2\u7edd\u670d\u52a1\u3002<\/p>\n\n\n\n
-- \u5bfc\u81f4\u6570\u636e\u5e93\u6027\u80fd\u4e0b\u964d\u7684\u6ce8\u5165\n'; SELECT COUNT(*) FROM users a, users b, users c; --<\/pre>\n\n\n\n
\u3000<\/p>\n\n\n\n
SQL\u6ce8\u5165\u7684\u5e38\u89c1\u7c7b\u578b<\/strong><\/p>\n\n\n\n
\n\n\n\n
1. \u7ecf\u5178SQL\u6ce8\u5165\uff08Union-based\uff09<\/strong><\/p>\n\n\n\n
\u8fd9\u662f\u6700\u5e38\u89c1\u7684SQL\u6ce8\u5165\u7c7b\u578b\uff0c\u653b\u51fb\u8005\u4f7f\u7528UNION\u64cd\u4f5c\u7b26\u6765\u83b7\u53d6\u989d\u5916\u7684\u6570\u636e\u3002<\/p>\n\n\n\n
\/\/ \u5b58\u5728\u6f0f\u6d1e\u7684\u67e5\u8be2\npublic List<Product> searchProducts(String keyword) {\n    String sql = \"SELECT id, name, price FROM products WHERE name LIKE '%\" + keyword + \"%'\";\n    return jdbcTemplate.query(sql, new ProductRowMapper());\n}\n\n\/\/ \u653b\u51fb\u8f93\u5165\uff1a\n\/\/ keyword: test' UNION SELECT id, username, password FROM users --\n\/\/ \u5b9e\u9645\u6267\u884c\u7684SQL\uff1a\n\/\/ SELECT id, name, price FROM products WHERE name LIKE '%test' UNION SELECT id, username, password FROM users --%'\n\/\/ \u653b\u51fb\u8005\u83b7\u53d6\u4e86\u7528\u6237\u8868\u7684\u6570\u636e<\/pre>\n\n\n\n
\u3000<\/p>\n\n\n\n
2. \u5e03\u5c14\u76f2\u6ce8\uff08Boolean-based Blind\uff09<\/strong><\/p>\n\n\n\n
\u5f53\u5e94\u7528\u7a0b\u5e8f\u4e0d\u76f4\u63a5\u663e\u793a\u6570\u636e\u5e93\u9519\u8bef\u6216\u67e5\u8be2\u7ed3\u679c\u65f6\uff0c\u653b\u51fb\u8005\u901a\u8fc7\u89c2\u5bdf\u5e94\u7528\u7a0b\u5e8f\u7684\u4e0d\u540c\u54cd\u5e94\u6765\u63a8\u65ad\u6570\u636e\u5e93\u4fe1\u606f\u3002<\/p>\n\n\n\n
\/\/ \u53ea\u8fd4\u56deboolean\u7ed3\u679c\u7684\u67e5\u8be2\npublic boolean userExists(String username) {\n    String sql = \"SELECT COUNT(*) FROM users WHERE username = '\" + username + \"'\";\n    int count = jdbcTemplate.queryForObject(sql, Integer.class);\n    return count > 0;\n}\n\n\/\/ \u653b\u51fb\u8005\u901a\u8fc7\u4ee5\u4e0b\u65b9\u5f0f\u9010\u4f4d\u731c\u6d4b\u6570\u636e\uff1a\n\/\/ username: admin' AND SUBSTRING((SELECT password FROM users WHERE username='admin'),1,1)='a' --\n\/\/ \u5982\u679c\u8fd4\u56detrue\uff0c\u8bf4\u660e\u5bc6\u7801\u7b2c\u4e00\u4f4d\u662f'a'\uff0c\u5426\u5219\u5c1d\u8bd5\u5176\u4ed6\u5b57\u7b26<\/pre>\n\n\n\n
\u3000<\/p>\n\n\n\n
3. \u65f6\u95f4\u76f2\u6ce8\uff08Time-based Blind\uff09<\/strong><\/p>\n\n\n\n
\u653b\u51fb\u8005\u901a\u8fc7\u6ce8\u5165\u5ef6\u65f6\u51fd\u6570\uff0c\u6839\u636e\u54cd\u5e94\u65f6\u95f4\u7684\u5dee\u5f02\u6765\u63a8\u65ad\u6570\u636e\u5e93\u4fe1\u606f\u3002<\/p>\n\n\n\n
\/\/ \u653b\u51fb\u793a\u4f8b\n\/\/ username: admin' AND IF(SUBSTRING((SELECT password FROM users WHERE username='admin'),1,1)='a', SLEEP(5), 0) --\n\/\/ \u5982\u679c\u5bc6\u7801\u7b2c\u4e00\u4f4d\u662f'a'\uff0c\u67e5\u8be2\u4f1a\u5ef6\u65f65\u79d2\u6267\u884c<\/pre>\n\n\n\n
\u3000<\/p>\n\n\n\n
4. \u9519\u8bef\u6ce8\u5165\uff08Error-based\uff09<\/strong><\/p>\n\n\n\n
\u653b\u51fb\u8005\u901a\u8fc7\u89e6\u53d1\u6570\u636e\u5e93\u9519\u8bef\uff0c\u4ece\u9519\u8bef\u4fe1\u606f\u4e2d\u83b7\u53d6\u654f\u611f\u6570\u636e\u3002<\/p>\n\n\n\n
\/\/ \u653b\u51fb\u8f93\u5165\u53ef\u80fd\u5bfc\u81f4\u7684\u9519\u8bef\u4fe1\u606f\uff1a\n\/\/ username: admin' AND (SELECT COUNT(*) FROM (SELECT 1 UNION SELECT 2 UNION SELECT 3)x GROUP BY CONCAT(0x3a,(SELECT username FROM users LIMIT 0,1),0x3a,FLOOR(RAND(0)*2))) --\n\/\/ \u9519\u8bef\u4fe1\u606f\u53ef\u80fd\u5305\u542b\uff1aDuplicate entry ':admin:1' for key 'group_key'<\/pre>\n\n\n\n
\u3000<\/p>\n\n\n\n
5. \u5806\u53e0\u6ce8\u5165\uff08Stacked Queries\uff09<\/strong><\/p>\n\n\n\n
\u5f53\u6570\u636e\u5e93\u652f\u6301\u6267\u884c\u591a\u6761SQL\u8bed\u53e5\u65f6\uff0c\u653b\u51fb\u8005\u53ef\u4ee5\u901a\u8fc7\u5206\u53f7\u5206\u9694\u6ce8\u5165\u591a\u6761\u6076\u610fSQL\u3002<\/p>\n\n\n\n
\/\/ \u653b\u51fb\u8f93\u5165\uff1a\n\/\/ userId: 1; DROP TABLE users; --\n\/\/ \u5b9e\u9645\u6267\u884c\u7684SQL\uff1a\n\/\/ SELECT * FROM products WHERE user_id = 1; DROP TABLE users; --\n\/\/ \u7b2c\u4e8c\u6761\u8bed\u53e5\u4f1a\u5220\u9664\u6574\u4e2a\u7528\u6237\u8868<\/pre>\n\n\n\n
\u3000<\/p>\n\n\n\n
\u56db\u3001SQL\u6ce8\u5165\u68c0\u6d4b\u65b9\u6cd5<\/strong><\/p>\n\n\n\n
\n\n\n\n
1. \u624b\u5de5\u68c0\u6d4b<\/strong><\/p>\n\n\n\n
\u5f00\u53d1\u8005\u53ef\u4ee5\u901a\u8fc7\u5728\u8f93\u5165\u5b57\u6bb5\u4e2d\u63d2\u5165\u7279\u6b8a\u5b57\u7b26\u6765\u68c0\u6d4b\u6f5c\u5728\u7684SQL\u6ce8\u5165\u6f0f\u6d1e\u3002<\/p>\n\n\n\n
# \u5e38\u7528\u7684\u6d4b\u8bd5payload\n' OR '1'='1\n' OR '1'='1' --\n' OR '1'='1' \/*\n') OR ('1'='1\n') OR ('1'='1') --\n1' OR '1'='1\n1 OR 1=1\n1' OR '1'='1' --<\/pre>\n\n\n\n
\u3000<\/p>\n\n\n\n
2. \u81ea\u52a8\u5316\u626b\u63cf\u5de5\u5177<\/strong><\/p>\n\n\n\n
\u53ef\u4ee5\u4f7f\u7528\u4e13\u4e1a\u7684\u5b89\u5168\u626b\u63cf\u5de5\u5177\u6765\u68c0\u6d4bSQL\u6ce8\u5165\u6f0f\u6d1e\uff1a<\/p>\n\n\n\n
# SQLMap - \u81ea\u52a8\u5316SQL\u6ce8\u5165\u68c0\u6d4b\u5de5\u5177\nsqlmap -u \"http:\/\/example.com\/search?keyword=test\" --batch --dbs\n\n# Burp Suite - Web\u5e94\u7528\u5b89\u5168\u6d4b\u8bd5\u5e73\u53f0\n# OWASP ZAP - \u514d\u8d39\u7684Web\u5e94\u7528\u5b89\u5168\u626b\u63cf\u5668<\/pre>\n\n\n\n
\u3000<\/p>\n\n\n\n
3. \u4ee3\u7801\u5ba1\u8ba1<\/strong><\/p>\n\n\n\n
\u901a\u8fc7\u4ee3\u7801\u5ba1\u8ba1\u53ef\u4ee5\u4ece\u6839\u6e90\u4e0a\u53d1\u73b0SQL\u6ce8\u5165\u6f0f\u6d1e\uff1a<\/p>\n\n\n\n
\/\/ \u5371\u9669\u7684\u4ee3\u7801\u6a21\u5f0f\npublic void dangerousMethod(String userInput) {\n    \/\/ \u76f4\u63a5\u62fc\u63a5\u7528\u6237\u8f93\u5165\n    String sql = \"SELECT * FROM table WHERE column = \" + userInput;\n  \n    \/\/ \u4f7f\u7528\u5b57\u7b26\u4e32\u683c\u5f0f\u5316\n    String sql2 = String.format(\"SELECT * FROM table WHERE column = '%s'\", userInput);\n  \n    \/\/ \u672a\u53c2\u6570\u5316\u7684PreparedStatement\n    String sql3 = \"SELECT * FROM table WHERE column = '\" + userInput + \"'\";\n    PreparedStatement stmt = connection.prepareStatement(sql3);\n}<\/pre>\n\n\n\n
\u3000<\/p>\n\n\n\n
SQL\u6ce8\u5165\u9632\u62a4\u7b56\u7565<\/strong><\/p>\n\n\n\n
\n\n\n\n
1. \u53c2\u6570\u5316\u67e5\u8be2\uff08\u6700\u91cd\u8981\uff09<\/strong><\/p>\n\n\n\n
\u53c2\u6570\u5316\u67e5\u8be2\u662f\u9632\u5fa1SQL\u6ce8\u5165\u6700\u6709\u6548\u7684\u65b9\u6cd5\u3002\u5b83\u5c06SQL\u4ee3\u7801\u548c\u6570\u636e\u5b8c\u5168\u5206\u79bb\uff0c\u786e\u4fdd\u7528\u6237\u8f93\u5165\u6c38\u8fdc\u4e0d\u4f1a\u88ab\u5f53\u4f5cSQL\u4ee3\u7801\u6267\u884c\u3002<\/p>\n\n\n\n
\/\/ \u4f7f\u7528PreparedStatement\u7684\u5b89\u5168\u5b9e\u73b0\npublic User getUserById(String userId) {\n    String sql = \"SELECT * FROM users WHERE id = ?\";\n    return jdbcTemplate.queryForObject(sql, new Object[]{userId}, new UserRowMapper());\n}\n\n\/\/ \u4f7f\u7528MyBatis\u7684\u53c2\u6570\u5316\u67e5\u8be2\n@Select(\"SELECT * FROM users WHERE username = #{username} AND status = #{status}\")\nList<User> findUsers(@Param(\"username\") String username, @Param(\"status\") String status);\n\n\/\/ \u4f7f\u7528JPA\u7684\u53c2\u6570\u5316\u67e5\u8be2\n@Query(\"SELECT u FROM User u WHERE u.email = :email\")\nOptional<User> findByEmail(@Param(\"email\") String email);<\/pre>\n\n\n\n
\u3000<\/p>\n\n\n\n
2. \u8f93\u5165\u9a8c\u8bc1\u548c\u8fc7\u6ee4<\/strong><\/p>\n\n\n\n
\u5bf9\u6240\u6709\u7528\u6237\u8f93\u5165\u8fdb\u884c\u4e25\u683c\u7684\u9a8c\u8bc1\u548c\u8fc7\u6ee4\uff0c\u786e\u4fdd\u8f93\u5165\u7b26\u5408\u9884\u671f\u683c\u5f0f\u3002<\/p>\n\n\n\n
@Component\npublic class InputValidator {\n  \n    \/\/ \u9a8c\u8bc1\u7528\u6237ID\uff08\u53ea\u5141\u8bb8\u6570\u5b57\uff09\n    public boolean isValidUserId(String userId) {\n        return userId != null && userId.matches(\"^\\\\d+$\");\n    }\n  \n    \/\/ \u9a8c\u8bc1\u90ae\u7bb1\u683c\u5f0f\n    public boolean isValidEmail(String email) {\n        String emailRegex = \"^[A-Za-z0-9+_.-]+@[A-Za-z0-9.-]+\\\\.[A-Za-z]{2,}$\";\n        return email != null && email.matches(emailRegex);\n    }\n  \n    \/\/ \u8fc7\u6ee4\u7279\u6b8a\u5b57\u7b26\n    public String sanitizeInput(String input) {\n        if (input == null) return null;\n      \n        \/\/ \u79fb\u9664\u5371\u9669\u5b57\u7b26\n        return input.replaceAll(\"[';\\\"\\\\-\\\\-\/\\\\*]\", \"\");\n    }\n  \n    \/\/ \u4f7f\u7528\u767d\u540d\u5355\u9a8c\u8bc1\n    public boolean isValidOrderBy(String orderBy) {\n        Set<String> allowedColumns = Set.of(\"id\", \"name\", \"email\", \"created_at\");\n        return allowedColumns.contains(orderBy.toLowerCase());\n    }\n}<\/pre>\n\n\n\n
\u3000<\/p>\n\n\n\n
3. \u4f7f\u7528\u5b58\u50a8\u8fc7\u7a0b<\/strong><\/p>\n\n\n\n
\u5b58\u50a8\u8fc7\u7a0b\u53ef\u4ee5\u63d0\u4f9b\u989d\u5916\u7684\u5b89\u5168\u5c42\uff0c\u4f46\u5fc5\u987b\u6b63\u786e\u5b9e\u73b0\u4ee5\u907f\u514d\u52a8\u6001SQL\u6784\u5efa\u3002<\/p>\n\n\n\n
-- \u5b89\u5168\u7684\u5b58\u50a8\u8fc7\u7a0b\u793a\u4f8b\nDELIMITER \/\/\nCREATE PROCEDURE GetUserByCredentials(\n    IN p_username VARCHAR(50),\n    IN p_password VARCHAR(255)\n)\nBEGIN\n    SELECT id, username, email, role \n    FROM users \n    WHERE username = p_username \n    AND password = SHA2(p_password, 256)\n    AND status = 'active';\nEND \/\/\nDELIMITER ;\n\n<\/pre>\n\n\n\n
\/\/ Java\u4e2d\u8c03\u7528\u5b58\u50a8\u8fc7\u7a0b\npublic User authenticateUser(String username, String password) {\n    SimpleJdbcCall jdbcCall = new SimpleJdbcCall(jdbcTemplate)\n        .withProcedureName(\"GetUserByCredentials\");\n  \n    SqlParameterSource params = new MapSqlParameterSource()\n        .addValue(\"p_username\", username)\n        .addValue(\"p_password\", password);\n  \n    Map<String, Object> result = jdbcCall.execute(params);\n    \/\/ \u5904\u7406\u7ed3\u679c...\n}<\/pre>\n\n\n\n
\u3000<\/p>\n\n\n\n
4. \u6700\u5c0f\u6743\u9650\u539f\u5219<\/strong><\/p>\n\n\n\n
\u4e3a\u6570\u636e\u5e93\u8fde\u63a5\u914d\u7f6e\u6700\u5c0f\u5fc5\u8981\u7684\u6743\u9650\uff0c\u9650\u5236\u6f5c\u5728\u653b\u51fb\u7684\u5f71\u54cd\u8303\u56f4\u3002<\/p>\n\n\n\n
-- \u521b\u5efa\u4e13\u7528\u7684\u5e94\u7528\u6570\u636e\u5e93\u7528\u6237\nCREATE USER 'app_user'@'localhost' IDENTIFIED BY 'strong_password';\n\n-- \u53ea\u6388\u4e88\u5fc5\u8981\u7684\u6743\u9650\nGRANT SELECT, INSERT, UPDATE ON myapp.users TO 'app_user'@'localhost';\nGRANT SELECT, INSERT, UPDATE ON myapp.orders TO 'app_user'@'localhost';\n\n-- \u4e0d\u8981\u6388\u4e88DROP, ALTER, CREATE\u7b49\u5371\u9669\u6743\u9650\n-- REVOKE ALL PRIVILEGES ON *.* FROM 'app_user'@'localhost';<\/pre>\n\n\n\n
\u3000<\/p>\n\n\n\n
5. \u9519\u8bef\u5904\u7406\u548c\u65e5\u5fd7\u8bb0\u5f55<\/strong><\/p>\n\n\n\n
\u5b9e\u73b0\u5b89\u5168\u7684\u9519\u8bef\u5904\u7406\u673a\u5236\uff0c\u907f\u514d\u6cc4\u9732\u654f\u611f\u4fe1\u606f\uff0c\u540c\u65f6\u8bb0\u5f55\u5b89\u5168\u4e8b\u4ef6\u3002<\/p>\n\n\n\n
@ControllerAdvice\npublic class SecurityExceptionHandler {\n  \n    private static final Logger securityLogger = LoggerFactory.getLogger(\"SECURITY\");\n  \n    @ExceptionHandler(DataAccessException.class)\n    public ResponseEntity<ErrorResponse> handleDataAccessException(\n            DataAccessException ex, HttpServletRequest request) {\n      \n        \/\/ \u8bb0\u5f55\u8be6\u7ec6\u7684\u5b89\u5168\u65e5\u5fd7\n        securityLogger.warn(\"Potential SQL injection attempt detected. \" +\n            \"IP: {}, URI: {}, User-Agent: {}, Error: {}\", \n            getClientIP(request),\n            request.getRequestURI(),\n            request.getHeader(\"User-Agent\"),\n            ex.getMessage());\n      \n        \/\/ \u8fd4\u56de\u901a\u7528\u9519\u8bef\u4fe1\u606f\uff08\u4e0d\u6cc4\u9732\u5177\u4f53\u6570\u636e\u5e93\u9519\u8bef\uff09\n        ErrorResponse error = new ErrorResponse(\n            \"INTERNAL_ERROR\", \n            \"An internal error occurred. Please try again later.\"\n        );\n      \n        return ResponseEntity.status(HttpStatus.INTERNAL_SERVER_ERROR).body(error);\n    }\n  \n    private String getClientIP(HttpServletRequest request) {\n        String xForwardedFor = request.getHeader(\"X-Forwarded-For\");\n        if (xForwardedFor != null && !xForwardedFor.isEmpty()) {\n            return xForwardedFor.split(\",\")[0].trim();\n        }\n        return request.getRemoteAddr();\n    }\n}<\/pre>\n\n\n\n
\u3000<\/p>\n\n\n\n
6. Web\u5e94\u7528\u9632\u706b\u5899\uff08WAF\uff09<\/strong><\/p>\n\n\n\n
\u90e8\u7f72WAF\u53ef\u4ee5\u5728\u5e94\u7528\u5c42\u9762\u63d0\u4f9b\u989d\u5916\u7684\u4fdd\u62a4\u3002<\/p>\n\n\n\n
# Nginx ModSecurity\u914d\u7f6e\u793a\u4f8b\nlocation \/ {\n    # \u542f\u7528ModSecurity\n    modsecurity on;\n    modsecurity_rules_file \/etc\/nginx\/modsec\/main.conf;\n  \n    # \u68c0\u6d4bSQL\u6ce8\u5165\u6a21\u5f0f\n    modsecurity_rules '\n        SecRule ARGS \"@detectSQLi\" \\\n            \"id:1001,\\\n            phase:2,\\\n            block,\\\n            msg:\\\"SQL Injection Attack Detected\\\",\\\n            logdata:\\\"Matched Data: %{MATCHED_VAR} found within %{MATCHED_VAR_NAME}\\\"\"\n    ';\n  \n    proxy_pass http:\/\/backend;\n}<\/pre>\n\n\n\n
\u3000<\/p>\n\n\n\n
7. \u4f7f\u7528ORM\u6846\u67b6\u7684\u5b89\u5168\u7279\u6027<\/strong><\/p>\n\n\n\n
\u73b0\u4ee3ORM\u6846\u67b6\u63d0\u4f9b\u4e86\u5f88\u597d\u7684SQL\u6ce8\u5165\u9632\u62a4\u673a\u5236\u3002<\/p>\n\n\n\n
\/\/ Spring Data JPA\u7684\u5b89\u5168\u67e5\u8be2\npublic interface UserRepository extends JpaRepository<User, Long> {\n  \n    \/\/ \u4f7f\u7528\u65b9\u6cd5\u540d\u67e5\u8be2\uff08\u81ea\u52a8\u53c2\u6570\u5316\uff09\n    List<User> findByUsernameAndStatus(String username, UserStatus status);\n  \n    \/\/ \u4f7f\u7528@Query\u6ce8\u89e3\u7684\u53c2\u6570\u5316\u67e5\u8be2\n    @Query(\"SELECT u FROM User u WHERE u.email = :email AND u.active = true\")\n    Optional<User> findActiveUserByEmail(@Param(\"email\") String email);\n  \n    \/\/ \u4f7f\u7528Criteria API\u7684\u52a8\u6001\u67e5\u8be2\n    default List<User> findUsersByCriteria(String username, String email, UserStatus status) {\n        return findAll((root, query, criteriaBuilder) -> {\n            List<Predicate> predicates = new ArrayList<>();\n          \n            if (username != null) {\n                predicates.add(criteriaBuilder.like(root.get(\"username\"), \"%\" + username + \"%\"));\n            }\n            if (email != null) {\n                predicates.add(criteriaBuilder.equal(root.get(\"email\"), email));\n            }\n            if (status != null) {\n                predicates.add(criteriaBuilder.equal(root.get(\"status\"), status));\n            }\n          \n            return criteriaBuilder.and(predicates.toArray(new Predicate[0]));\n        });\n    }\n}<\/pre>\n\n\n\n
\u3000<\/p>\n\n\n\n
\u5b9e\u9645\u9632\u62a4\u6848\u4f8b<\/strong><\/p>\n\n\n\n
\n\n\n\n
\u6848\u4f8b1\uff1a\u7528\u6237\u767b\u5f55\u7cfb\u7edf\u5b89\u5168\u52a0\u56fa<\/strong><\/p>\n\n\n\n
@Service\npublic class AuthenticationService {\n  \n    private final UserRepository userRepository;\n    private final PasswordEncoder passwordEncoder;\n    private final InputValidator inputValidator;\n    private final SecurityEventLogger securityLogger;\n  \n    public AuthenticationResult authenticate(LoginRequest request) {\n        try {\n            \/\/ 1. \u8f93\u5165\u9a8c\u8bc1\n            if (!inputValidator.isValidUsername(request.getUsername())) {\n                securityLogger.logInvalidInput(\"Invalid username format\", request);\n                return AuthenticationResult.failed(\"Invalid credentials\");\n            }\n          \n            \/\/ 2. \u4f7f\u7528\u53c2\u6570\u5316\u67e5\u8be2\n            Optional<User> userOpt = userRepository.findByUsername(request.getUsername());\n          \n            if (userOpt.isEmpty()) {\n                securityLogger.logFailedLogin(\"User not found\", request);\n                return AuthenticationResult.failed(\"Invalid credentials\");\n            }\n          \n            User user = userOpt.get();\n          \n            \/\/ 3. \u5bc6\u7801\u9a8c\u8bc1\n            if (!passwordEncoder.matches(request.getPassword(), user.getPassword())) {\n                securityLogger.logFailedLogin(\"Invalid password\", request);\n                return AuthenticationResult.failed(\"Invalid credentials\");\n            }\n          \n            \/\/ 4. \u68c0\u67e5\u8d26\u6237\u72b6\u6001\n            if (!user.isActive()) {\n                securityLogger.logFailedLogin(\"Account disabled\", request);\n                return AuthenticationResult.failed(\"Account is disabled\");\n            }\n          \n            securityLogger.logSuccessfulLogin(user);\n            return AuthenticationResult.success(user);\n          \n        } catch (Exception e) {\n            securityLogger.logException(\"Authentication error\", e, request);\n            return AuthenticationResult.failed(\"Authentication failed\");\n        }\n    }\n}<\/pre>\n\n\n\n
\u3000<\/p>\n\n\n\n
\u6848\u4f8b2\uff1a\u52a8\u6001\u67e5\u8be2\u7684\u5b89\u5168\u5b9e\u73b0<\/strong><\/p>\n\n\n\n
@Service\npublic class ProductSearchService {\n  \n    private final ProductRepository productRepository;\n    private final InputValidator inputValidator;\n  \n    public List<Product> searchProducts(ProductSearchCriteria criteria) {\n        \/\/ \u9a8c\u8bc1\u548c\u6e05\u7406\u8f93\u5165\n        validateSearchCriteria(criteria);\n      \n        \/\/ \u4f7f\u7528Criteria API\u6784\u5efa\u5b89\u5168\u7684\u52a8\u6001\u67e5\u8be2\n        return productRepository.findAll((root, query, cb) -> {\n            List<Predicate> predicates = new ArrayList<>();\n          \n            if (criteria.getName() != null) {\n                predicates.add(cb.like(cb.lower(root.get(\"name\")), \n                    \"%\" + criteria.getName().toLowerCase() + \"%\"));\n            }\n          \n            if (criteria.getCategoryId() != null) {\n                predicates.add(cb.equal(root.get(\"category\").get(\"id\"), \n                    criteria.getCategoryId()));\n            }\n          \n            if (criteria.getMinPrice() != null) {\n                predicates.add(cb.greaterThanOrEqualTo(root.get(\"price\"), \n                    criteria.getMinPrice()));\n            }\n          \n            if (criteria.getMaxPrice() != null) {\n                predicates.add(cb.lessThanOrEqualTo(root.get(\"price\"), \n                    criteria.getMaxPrice()));\n            }\n          \n            \/\/ \u6392\u5e8f\u9a8c\u8bc1\n            if (criteria.getSortBy() != null) {\n                if (inputValidator.isValidSortField(criteria.getSortBy())) {\n                    if (\"desc\".equalsIgnoreCase(criteria.getSortOrder())) {\n                        query.orderBy(cb.desc(root.get(criteria.getSortBy())));\n                    } else {\n                        query.orderBy(cb.asc(root.get(criteria.getSortBy())));\n                    }\n                }\n            }\n          \n            return cb.and(predicates.toArray(new Predicate[0]));\n        });\n    }\n  \n    private void validateSearchCriteria(ProductSearchCriteria criteria) {\n        if (criteria.getName() != null) {\n            criteria.setName(inputValidator.sanitizeSearchTerm(criteria.getName()));\n        }\n      \n        if (criteria.getCategoryId() != null && criteria.getCategoryId() <= 0) {\n            throw new IllegalArgumentException(\"Invalid category ID\");\n        }\n      \n        if (criteria.getMinPrice() != null && criteria.getMinPrice().compareTo(BigDecimal.ZERO) < 0) {\n            throw new IllegalArgumentException(\"Invalid minimum price\");\n        }\n      \n        if (criteria.getMaxPrice() != null && criteria.getMaxPrice().compareTo(BigDecimal.ZERO) < 0) {\n            throw new IllegalArgumentException(\"Invalid maximum price\");\n        }\n    }\n}<\/pre>\n\n\n\n
\u3000<\/p>\n\n\n\n
\u5b89\u5168\u5f00\u53d1\u6700\u4f73\u5b9e\u8df5<\/strong><\/p>\n\n\n\n
\n\n\n\n
1. \u4ee3\u7801\u5ba1\u67e5\u6e05\u5355<\/strong><\/p>\n\n\n\n
\u5efa\u7acb\u7cfb\u7edf\u7684\u4ee3\u7801\u5ba1\u67e5\u6d41\u7a0b\uff0c\u786e\u4fdd\u6bcf\u4e2a\u6570\u636e\u5e93\u64cd\u4f5c\u90fd\u7ecf\u8fc7\u5b89\u5168\u68c0\u67e5\uff1a<\/p>\n\n\n\n
## SQL\u6ce8\u5165\u5b89\u5168\u68c0\u67e5\u6e05\u5355\n\n### \u5fc5\u987b\u68c0\u67e5\u9879\n- [ ] \u662f\u5426\u4f7f\u7528\u4e86\u53c2\u6570\u5316\u67e5\u8be2\uff1f\n- [ ] \u662f\u5426\u5bf9\u7528\u6237\u8f93\u5165\u8fdb\u884c\u4e86\u9a8c\u8bc1\uff1f\n- [ ] \u662f\u5426\u4f7f\u7528\u4e86\u767d\u540d\u5355\u9a8c\u8bc1\u52a8\u6001\u90e8\u5206\uff08\u5982ORDER BY\uff09\uff1f\n- [ ] \u9519\u8bef\u5904\u7406\u662f\u5426\u4f1a\u6cc4\u9732\u654f\u611f\u4fe1\u606f\uff1f\n- [ ] \u6570\u636e\u5e93\u7528\u6237\u6743\u9650\u662f\u5426\u6700\u5c0f\u5316\uff1f\n\n### \u7981\u6b62\u4f7f\u7528\u9879\n- [ ] \u76f4\u63a5\u5b57\u7b26\u4e32\u62fc\u63a5\u6784\u5efaSQL\n- [ ] \u4f7f\u7528String.format()\u6784\u5efaSQL\n- [ ] \u52a8\u6001\u6784\u5efa\u5b58\u50a8\u8fc7\u7a0b\u8c03\u7528\n- [ ] \u5728\u9519\u8bef\u4fe1\u606f\u4e2d\u663e\u793a\u5b8c\u6574SQL\u8bed\u53e5\n- [ ] \u4f7f\u7528\u9ad8\u6743\u9650\u6570\u636e\u5e93\u7528\u6237\u8fde\u63a5<\/pre>\n\n\n\n
\u3000<\/p>\n\n\n\n
2. \u81ea\u52a8\u5316\u5b89\u5168\u6d4b\u8bd5<\/strong><\/p>\n\n\n\n
\u5c06SQL\u6ce8\u5165\u68c0\u6d4b\u96c6\u6210\u5230CI\/CD\u6d41\u7a0b\u4e2d\uff1a<\/p>\n\n\n\n
# GitHub Actions\u793a\u4f8b\nname: Security Scan\non: [push, pull_request]\n\njobs:\n  security-scan:\n    runs-on: ubuntu-latest\n    steps:\n    - uses: actions\/checkout@v2\n  \n    - name: Run SAST Scan\n      uses: securecodewarrior\/github-action-add-sarif@v1\n      with:\n        sarif-file: 'security-scan-results.sarif'\n  \n    - name: SQL Injection Test\n      run: |\n        # \u8fd0\u884c\u81ea\u52a8\u5316SQL\u6ce8\u5165\u6d4b\u8bd5\n        python scripts\/sql_injection_test.py\n  \n    - name: Dependency Check\n      uses: dependency-check\/Dependency-Check_Action@main\n      with:\n        project: 'my-project'\n        path: '.'\n        format: 'ALL'<\/pre>\n\n\n\n
\u3000<\/p>\n\n\n\n
3. \u5b89\u5168\u914d\u7f6e\u7ba1\u7406<\/strong><\/p>\n\n\n\n
@Configuration\n@EnableConfigurationProperties(SecurityProperties.class)\npublic class DatabaseSecurityConfig {\n  \n    @Bean\n    @Primary\n    public DataSource secureDataSource(SecurityProperties props) {\n        HikariConfig config = new HikariConfig();\n        config.setJdbcUrl(props.getDatabase().getUrl());\n        config.setUsername(props.getDatabase().getUsername());\n        config.setPassword(props.getDatabase().getPassword());\n      \n        \/\/ \u5b89\u5168\u914d\u7f6e\n        config.addDataSourceProperty(\"useSSL\", \"true\");\n        config.addDataSourceProperty(\"requireSSL\", \"true\");\n        config.addDataSourceProperty(\"verifyServerCertificate\", \"true\");\n        config.addDataSourceProperty(\"allowMultiQueries\", \"false\");\n        config.addDataSourceProperty(\"autoReconnect\", \"false\");\n      \n        \/\/ \u8fde\u63a5\u6c60\u5b89\u5168\u914d\u7f6e\n        config.setMaximumPoolSize(20);\n        config.setMinimumIdle(5);\n        config.setConnectionTimeout(30000);\n        config.setLeakDetectionThreshold(60000);\n      \n        return new HikariDataSource(config);\n    }\n}\n<\/pre>\n\n\n\n
\u3000<\/p>\n\n\n\n
\u603b\u7ed3<\/strong><\/p>\n\n\n\n
\n\n\n\n
SQL\u6ce8\u5165\u653b\u51fb\u867d\u7136\u662f\u4e00\u4e2a\u5df2\u77e5\u591a\u5e74\u7684\u5b89\u5168\u95ee\u9898\uff0c\u4f46\u4ecd\u7136\u662f\u5f53\u4ecaWeb\u5e94\u7528\u9762\u4e34\u7684\u6700\u4e25\u91cd\u5a01\u80c1\u4e4b\u4e00\u3002\u9632\u62a4SQL\u6ce8\u5165\u9700\u8981\u4ece\u591a\u4e2a\u5c42\u9762\u5165\u624b\uff1a<\/p>\n\n\n\n
\u6838\u5fc3\u9632\u62a4\u539f\u5219\uff1a<\/p>\n\n\n\n
    \n
  1. 1.\u00a0\u53c2\u6570\u5316\u67e5\u8be2<\/strong>\uff1a\u8fd9\u662f\u6700\u6709\u6548\u7684\u9632\u62a4\u63aa\u65bd\uff0c\u5fc5\u987b\u5728\u6240\u6709\u6570\u636e\u5e93\u64cd\u4f5c\u4e2d\u4f7f\u7528<\/li>\n\n\n\n
  2. 2.\u00a0\u8f93\u5165\u9a8c\u8bc1<\/strong>\uff1a\u5bf9\u6240\u6709\u7528\u6237\u8f93\u5165\u8fdb\u884c\u4e25\u683c\u7684\u683c\u5f0f\u9a8c\u8bc1\u548c\u5185\u5bb9\u8fc7\u6ee4<\/li>\n\n\n\n
  3. 3.\u00a0\u6700\u5c0f\u6743\u9650<\/strong>\uff1a\u6570\u636e\u5e93\u7528\u6237\u53ea\u5e94\u5177\u5907\u5fc5\u8981\u7684\u6700\u5c0f\u6743\u9650<\/li>\n\n\n\n
  4. 4.\u00a0\u9519\u8bef\u5904\u7406<\/strong>\uff1a\u907f\u514d\u5728\u9519\u8bef\u4fe1\u606f\u4e2d\u6cc4\u9732\u654f\u611f\u7684\u6570\u636e\u5e93\u4fe1\u606f<\/li>\n\n\n\n
  5. 5.\u00a0\u5b89\u5168\u5ba1\u8ba1<\/strong>\uff1a\u5b9a\u671f\u8fdb\u884c\u4ee3\u7801\u5ba1\u67e5\u548c\u5b89\u5168\u6d4b\u8bd5<\/li>\n<\/ol>\n\n\n\n
    \u5f00\u53d1\u5b9e\u8df5\u5efa\u8bae\uff1a<\/p>\n\n\n\n
      \n
    1. 1. \u5efa\u7acb\u5b89\u5168\u7f16\u7801\u89c4\u8303\uff0c\u8981\u6c42\u6240\u6709\u5f00\u53d1\u4eba\u5458\u9075\u5faa<\/li>\n\n\n\n
    2. 2. \u4f7f\u7528\u73b0\u4ee3ORM\u6846\u67b6\u7684\u5b89\u5168\u7279\u6027<\/li>\n\n\n\n
    3. 3. \u5b9e\u65bd\u81ea\u52a8\u5316\u5b89\u5168\u6d4b\u8bd5\u548c\u4ee3\u7801\u626b\u63cf<\/li>\n\n\n\n
    4. 4. \u90e8\u7f72Web\u5e94\u7528\u9632\u706b\u5899\u4f5c\u4e3a\u989d\u5916\u9632\u62a4\u5c42<\/li>\n\n\n\n
    5. 5. \u5b9a\u671f\u8fdb\u884c\u5b89\u5168\u57f9\u8bad\u548c\u6f0f\u6d1e\u8bc4\u4f30<\/li>\n<\/ol>\n\n\n\n
      \u901a\u8fc7\u7cfb\u7edf\u6027\u7684\u5b89\u5168\u63aa\u65bd\u548c\u6301\u7eed\u7684\u5b89\u5168\u610f\u8bc6\u63d0\u5347\uff0c\u6211\u4eec\u53ef\u4ee5\u6709\u6548\u9632\u5fa1SQL\u6ce8\u5165\u653b\u51fb\uff0c\u4fdd\u62a4\u5e94\u7528\u548c\u6570\u636e\u7684\u5b89\u5168\u3002\u8bb0\u4f4f\uff0c\u5b89\u5168\u4e0d\u662f\u4e00\u8e74\u800c\u5c31\u7684\uff0c\u800c\u662f\u9700\u8981\u5728\u6574\u4e2a\u8f6f\u4ef6\u5f00\u53d1\u751f\u547d\u5468\u671f\u4e2d\u6301\u7eed\u5173\u6ce8\u548c\u6539\u8fdb\u7684\u8fc7\u7a0b\u3002<\/p>\n","protected":false},"excerpt":{"rendered":"
      \u8f6c\u8f7d\uff1aSQL\u6ce8\u5165\u653b\u51fb\uff1a\u539f\u7406\u5206\u6790\u4e0e\u9632\u62a4\u5b9e\u6218 \u5728Web\u5b89\u5168\u9886\u57df\uff0cSQL\u6ce8\u5165\u4e00\u76f4\u662f\u6700\u5371\u9669\u7684\u5b89\u5168\u6f0f\u6d1e\u4e4b\u4e00\u3002\u636eOWASP […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26,23],"tags":[],"_links":{"self":[{"href":"https:\/\/92it.top\/index.php?rest_route=\/wp\/v2\/posts\/18358"}],"collection":[{"href":"https:\/\/92it.top\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/92it.top\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/92it.top\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/92it.top\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=18358"}],"version-history":[{"count":1,"href":"https:\/\/92it.top\/index.php?rest_route=\/wp\/v2\/posts\/18358\/revisions"}],"predecessor-version":[{"id":18360,"href":"https:\/\/92it.top\/index.php?rest_route=\/wp\/v2\/posts\/18358\/revisions\/18360"}],"wp:attachment":[{"href":"https:\/\/92it.top\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=18358"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/92it.top\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=18358"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/92it.top\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=18358"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}