Hi.
As Iago said, you'll need to play with tamper scripts.
I would recommend for that case of yours:
--tamper=versionedkeywords
or
--tamper=versionedmorekeywords
or
--tamper=halfversionedmorekeywords
Kind regards,
Miroslav Stampar
On Mon, Jul 2, 2012 at 11:29 PM, Iago Sousa <146050...@gmail.com
Use --tamper=tamper/space2comment.py
On Mon, Jul 2, 2012 at 6:02 PM, cats wrote:
> Hello there! :-)
>
> Just a quick question.
> Does sqlmap currently handle injections like this?
>
> http://example.com?someparam=1/*!and 1=1*/
>
> That is, if there is a filter that prevents a more common injecti
Hello there! :-)
Just a quick question.
Does sqlmap currently handle injections like this?
http://example.com?someparam=1/*!and 1=1*/
That is, if there is a filter that prevents a more common injection like
someparam=1 AND 1=1 from working, then using this type of commenting
would execute it and
