cneill/idea.json

## idea.json
{
  "errors": [],
  "failures": {
    "localhost:9000/test": {
      "500_errors": {
        "description": "This request returns an error with status code 501, which might indicate some server-side fault that could lead to further vulnerabilities",
        "payloads": [
          {
            "confidence": "High",
            "param": {
              "location": "data",
              "method": "POST",
              "type": "application/json",
              "variables": [
                "test"
              ]
            },
            "signals": [
              "HTTP_STATUS_CODE_501"
              "STRING_PRESENCE"
            ],
            "strings": [
              "AND (SELECT 1 FROM(SELECT COUNT(*),CONCAT('x',(SELECT (ELT(1=1,1))),'x',FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)",
              "blah",
              "blah",
              "blah"
            ]
          },
          {
            "confidence": "Medium",
            "param": {
              "location": "data",
              "method": "POST",
              "type": "application/json",
              "variables": [
                "test"
              ]
            },
            "signals": [
              "HTTP_STATUS_CODE_501"
            ],
            "strings": [
              "AND EXTRACTVALUE(1,CONCAT('','x',(SELECT (ELT(1=1,1))),'x'))",
              "blah",
              "blah"
            ]
          },
        ],
        "severity": "Low"
      }
    }
  },
  "stats": {
    "High": 0,
    "Low": 1,
    "Medium": 0
  }
}
	{
	"errors": [],
	"failures": {
	"localhost:9000/test": {
	"500_errors": {
	"description": "This request returns an error with status code 501, which might indicate some server-side fault that could lead to further vulnerabilities",
	"payloads": [
	{
	"confidence": "High",
	"param": {
	"location": "data",
	"method": "POST",
	"type": "application/json",
	"variables": [
	"test"
	]
	},
	"signals": [
	"HTTP_STATUS_CODE_501"
	"STRING_PRESENCE"
	],
	"strings": [
	"AND (SELECT 1 FROM(SELECT COUNT(),CONCAT('x',(SELECT (ELT(1=1,1))),'x',FLOOR(RAND(0)2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)",
	"blah",
	"blah",
	"blah"
	]
	},
	{
	"confidence": "Medium",
	"param": {
	"location": "data",
	"method": "POST",
	"type": "application/json",
	"variables": [
	"test"
	]
	},
	"signals": [
	"HTTP_STATUS_CODE_501"
	],
	"strings": [
	"AND EXTRACTVALUE(1,CONCAT('','x',(SELECT (ELT(1=1,1))),'x'))",
	"blah",
	"blah"
	]
	},
	],
	"severity": "Low"
	}
	}
	},
	"stats": {
	"High": 0,
	"Low": 1,
	"Medium": 0
	}
	}