Thanks! Now I'm getting better results ;)
On Wed, Oct 23, 2013 at 1:08 PM, Miroslav Stampar
wrote:
> It should be fixed now :)
>
> Bye
>
>
> On Wed, Oct 23, 2013 at 5:55 PM, Andres Riancho
> wrote:
>>
>> All right, thanks! :)
>>
>> On Wed, Oct 23, 2013 at 12:20 PM, Miroslav Stampar
>> wrote:
>>
It should be fixed now :)
Bye
On Wed, Oct 23, 2013 at 5:55 PM, Andres Riancho wrote:
> All right, thanks! :)
>
> On Wed, Oct 23, 2013 at 12:20 PM, Miroslav Stampar
> wrote:
> > Hi Andres.
> >
> > Expect a fix ASAP (<1 hour).
> >
> > Bye
> >
> > On Oct 23, 2013 5:18 PM, "Andres Riancho"
> wrot
All right, thanks! :)
On Wed, Oct 23, 2013 at 12:20 PM, Miroslav Stampar
wrote:
> Hi Andres.
>
> Expect a fix ASAP (<1 hour).
>
> Bye
>
> On Oct 23, 2013 5:18 PM, "Andres Riancho" wrote:
>>
>> I'm capturing sqlmap's traffic using burp and I see:
>>
>>
>> %5C_%5C_PAYLOAD%5C_DELIMITER%5C_%5C_frmCo
Hi Andres.
Expect a fix ASAP (<1 hour).
Bye
On Oct 23, 2013 5:18 PM, "Andres Riancho" wrote:
> I'm capturing sqlmap's traffic using burp and I see:
>
>
> %5C_%5C_PAYLOAD%5C_DELIMITER%5C_%5C_frmContact%5C%22%5C%29%5C%29%5C%29%5C%20RLIKE%5C%20%5C%28SELECT%5C%20%5C%28CASE%5C%20WHEN%5C%20%5C%282371
I'm capturing sqlmap's traffic using burp and I see:
%5C_%5C_PAYLOAD%5C_DELIMITER%5C_%5C_frmContact%5C%22%5C%29%5C%29%5C%29%5C%20RLIKE%5C%20%5C%28SELECT%5C%20%5C%28CASE%5C%20WHEN%5C%20%5C%282371%5C=2371%5C%29%5C%20THEN%5C%200x66726d436f6e74616374%5C%20ELSE%5C%200x28%5C%20END%5C%29%5C%29%5C%20AND%5
There are no errors and it is a time based injection, so not much to go on in
terms of page content. I have no issues enumerating tables or bruteforcing
columns.
Will test out the -f --banner args tonight. Good to hear it should be supported
well.
Sent from a computer
> On Oct 23, 2013, at 0:
