Hello,
It would be very nice if it would be possible to specify the targeted
value directly for
post/cookie/agent/referrer, as it is possible for get with -p.
And may be, there should be a list shown before the injection starts,
where you can
choose "All" or "Number of parameter".
kind regards
Hello,
I think it would great if sqlmap could detect which post-parameter
contains the csrf-token, if any,
or select the toke manually.
kind regards,
a nice guy
--
Virtualization & Cloud Management Using Capacity Planni
Found a problematic part. Will fix it tomorrow.
Kind regards,
Miroslav Stampar
On Wed, Mar 14, 2012 at 6:42 PM, buawig wrote:
> > Also, "Ignore" should be suitable for your
> > case when you don't want sqlmap to follow the redirection.
>
> This still does not work for me.
> If I choose "[3] Ign
> Also, "Ignore" should be suitable for your
> case when you don't want sqlmap to follow the redirection.
This still does not work for me.
If I choose "[3] Ignore". sqlmap still sends requests to the redirection
Location.
There are even scenarios where sqlmap doesn't detect an sqli due to this
beh
Hi.
To sum things up here:
1) "Follow the redirection" should be clear what it does
2) "Stay on the original page" uses the original URL and jumps there
(useful if there were some changes resulting in changes on the original
page - e.g. some session cookie was set resulting in "differentiation" o
I don't know how you have got it working, but the right way is with
--union-cols switch and that is documented in the user's manual.
Increasing --level will also do by the way.
Bernardo Damele A. G.
This message was sent from a smartphone
On 14 Mar 2012, at 03:36, Rob Fuller wrote:
> disregard
