萌新第一次发帖求助   忘各位大大多指点

因为是补天上的   所以网址贴出来应该没什么吧？

1b8K9s2c8@1M7q4)9K6b7g2)9J5c8W2)9J5c8Y4N6%4N6#2)9J5k6i4u0G2M7r3g2F1N6r3g2Q4x3X3g2U0L8$3#2Q4x3V1k6U0L8$3q4D9i4K6u0V1M7r3q4Y4k6i4y4Q4x3V1k6K6N6h3y4U0k6i4y4K6f1r3q4Y4k6g2)9J5k6h3q4K6M7s2S2Q4x3@1k6U0j5i4c8A6k6q4)9K6c8o6x3K6

372K9s2c8@1M7q4)9K6b7g2)9J5c8W2)9J5c8Y4N6%4N6#2)9J5k6i4u0G2M7r3g2F1N6r3g2Q4x3X3g2U0L8$3#2Q4x3V1k6K6j5i4c8W2i4K6u0V1M7r3q4Y4k6i4y4Q4x3V1k6H3M7X3!0b7j5h3N6W2i4K6u0W2j5i4y4H3P5q4)9K6c8X3y4S2N6r3W2V1i4K6y4p5x3K6g2Q4y4@1x3K6z5q4)9%4b7K6j5$3

URL一般是这两种组成形式

catid = 33 的地方试了
'
and 1=1                  and 1=2                   and 1=1%23                   and 1=1-- 1
or 1=1         or 1=2                  or 1=1%23               or 1=1-- 1
and/**/1=1
order by                        and ord(substring(user(),1,1))=114-- 1             and if(substring(user(),1,1)='r',sleep(5),1)-- 1
返回的都是一个页面    是不是说明不存在注入漏洞？大神们能给点思路吗

[注意]看雪招聘，专注安全领域的专业人才平台！