Support for SQL injection

[alanbak]

Hello, all.

I'm trying to exploit the blind injection in the following query:

?id=1"or(ExtractValue(1,concat(0x3a,(version()))))="1

sqlmap not find vulnerabilities, can not be used.

But my request in browser url:

?id=1"or(ExtractValue(1,concat(0x3a,(version()))))="1

It takes a successful ... How can I get sqlmap use my method of attack from the one it uses by default.

Sincerely, Alan

p.s. sorry for my bad english

[stamparm]

Can you please send a traffic for such run to miroslav@sqlmap.org?

Please use:
python sqlmap.py ... -t traffic.txt --level=5 --risk=3

[champ1]

I know it sounds crazy, byt i would like to have this claryfied to..:)

But ofen i sit and know the right string, so it would spare the target for many reqest..:)

[stamparm]

--test-filter="extractvalue" would use only tests based on extractvalue
payloads

With prefix/suffix you can set boundaries: e.g. --prefix=""" --suffix="-- "

There is no way to tell sqlmap "this is the right payload. Use it". It's
not so trivial.

I know it sounds crazy, byt i would like to have this claryfied to..:)

But ofen i sit and know the right string, so it would spare the target for
many reqest..:)

—
Reply to this email directly or view it on
GitHubhttps://github.com//issues/424#issuecomment-15366441
.

[stamparm]

Because of no reply from user closing this Issue down