Miroslav, this may be the case. Since this is a common scenario for the
input field to be limited in number of characters, does Sqlmap have any
configuration options to overcome this obstacle? Perhaps using shorter
queries or out of band output?
> Hi.
>
> Maybe web server has a treshold value
Hi.
You can't expect sqlmap to compress a query if it needs to have database
name, table name and a query statement inside. It's physically impossible.
You are advised to check out manually what's going on.
Kind regards,
Miroslav Stampar
On Tue, Feb 26, 2013 at 4:02 PM, Brian Milliron wrote:
>
Hi.
Maybe web server has a treshold value for a parameter value length. This
looks like such case.
Kind regards,
Miroslav Stampar
Dana 22.2.2013. 02:23 "Brian Milliron" je
napisao/la:
> SQlmap is able to extract db names, current user and backend info, but
> when I try to get tables I end up wi
SQlmap is able to extract db names, current user and backend info, but
when I try to get tables I end up with junk data or nothing at all. I
find this strange because SQLmap has identified multiple injection
methods and I am on a fast local connection with the target server.
This is the log fi
