Re: [sqlmap-users] injection into cookies

2011-08-02 Thread Robin Wood
On 2 August 2011 18:30, Miroslav Stampar wrote: > hi Robin > > you'll need to give a valid Cookie with > --cookie="&ASP.NET_SessionId=1FA...&..." and use -p > "ASP.NET_SessionId" > > thing is that when level < 4 we ignore session-like parameters in > default cases. so, either you can use expli

Re: [sqlmap-users] injection into cookies

2011-08-02 Thread Miroslav Stampar
hi Robin you'll need to give a valid Cookie with --cookie="&ASP.NET_SessionId=1FA...&..." and use -p "ASP.NET_SessionId" thing is that when level < 4 we ignore session-like parameters in default cases. so, either you can use explicit -p "ASP.NET_SessionId" or you can use --level=4. in your ca