Can't get passowrds #5969
Description
Have tried with default options, and have tried with --no-cast and --hex, user is non DBA has USAGE role, and nothing related to passwords is enumerating.
Example : [14:18:46] [INFO] testing if current user is DBA
[14:18:46] [INFO] fetching current user
current user is DBA: False
[14:18:46] [INFO] fetching database users
[14:18:46] [INFO] fetching number of database users
[14:18:46] [INFO] resumed: 1
[14:18:46] [INFO] resumed: '1'@'localhost'
database management system users [1]:
[*] '1'@'localhost'
[14:18:46] [INFO] fetching database users password hashes
[14:18:46] [INFO] fetching database users
[14:18:46] [INFO] fetching number of password hashes for user '1'
[14:18:46] [WARNING] time-based comparison requires larger statistical model, please wait.............................. (done)
[14:19:11] [WARNING] it is very important to not stress the network connection during usage of time-based payloads to prevent potential disruptions
[14:19:12] [WARNING] in case of continuous data retrieval problems you are advised to try a switch '--no-cast' or switch '--hex'
[14:19:12] [INFO] retrieved:
[14:19:13] [WARNING] unable to retrieve the number of password hashes for user '1'
[14:19:13] [ERROR] unable to retrieve the password hashes for the database users
[14:19:13] [INFO] fetching database users privileges
[14:19:13] [INFO] fetching database users
[14:19:13] [INFO] fetching number of privileges for user '1'
[14:19:13] [INFO] resumed: 1
[14:19:13] [INFO] fetching privileges for user '1'
[14:19:13] [INFO] resumed: USAGE
database management system users privileges:
[*] %1% [1]:
privilege: USAGE
[14:19:13] [WARNING] on MySQL the concept of roles does not exist. sqlmap will enumerate privileges instead
[14:19:13] [INFO] fetching database users privileges
database management system users roles:
[*] %1% [1]:
role: USAGE