On Monday, February 18, 2013, Bernardo Damele A. G. wrote:
>
> --technique T to force only time-based SQL injection. Refer to the
> user's manual for further details on --technique switch.
>
>
Apologies. It is technique not type :)
--
Regards
L.
Sent using electronic mail ツ
Hi Bruno,
On 18 February 2013 00:03, Bruno Garcia wrote:
> Also, it shows that it detected two injections, and it's using the first one
> for doing the queries, is there anyway I could test the queries with the
> second injection?
--technique T to force only time-based SQL injection. Refer to th
Hi.
It's very simple. If stacking of queries is not supported (e.g.
id=1;UPDATE..) then you can't use non-query SQL statements. Pretty simple.
Bye
Dana 18.2.2013. 01:04 "Bruno Garcia" je
napisao/la:
> Hello,
>
> I have this injection:
>
> Place: POST
> Parameter: x
> Type: boolean-based
On Monday, February 18, 2013, Bruno Garcia wrote:
> Hello,
>
> I have this injection:
>
> Place: POST
> Parameter: x
> Type: boolean-based blind
> Title: MySQL boolean-based blind - WHERE, HAVING, ORDER BY or GROUP BY
> clause (RLIKE)
> Payload: xxx=&=test' RLIKE IF(8894=88
Hello,
I have this injection:
Place: POST
Parameter: x
Type: boolean-based blind
Title: MySQL boolean-based blind - WHERE, HAVING, ORDER BY or GROUP BY
clause (RLIKE)
Payload: xxx=&=test' RLIKE IF(8894=8894,0x4d7953514c,0x28) AND
'qGgA'='qGgA
Vector: RLIKE IF([INFERENC
