hi Ryan. that dynamicity shouldn't be a problem for the testing itself. it just says that it seems like the page doesn't change on different values for that parameter.
you can try switches --text-only or --string in your case (if you are hunting for a boolean injection - otherwise reply back with more info and we'll see how we can help you). kind regards On Mon, Sep 5, 2011 at 9:00 PM, ryan cartner <ryan.cart...@gmail.com> wrote: > When I attempt to run sqlmap against a application that I know from manual > testing is vulnerable, it claims the vulnerable parameter is not dynamic. > Any idea what can be causing this? > ------------------------------------------------------------------------------ > Special Offer -- Download ArcSight Logger for FREE! > Finally, a world-class log management solution at an even better > price-free! And you'll get a free "Love Thy Logs" t-shirt when you > download Logger. Secure your free ArcSight Logger TODAY! > http://p.sf.net/sfu/arcsisghtdev2dev > _______________________________________________ > sqlmap-users mailing list > sqlmap-users@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/sqlmap-users > > -- Miroslav Stampar http://about.me/stamparm ------------------------------------------------------------------------------ Special Offer -- Download ArcSight Logger for FREE! Finally, a world-class log management solution at an even better price-free! And you'll get a free "Love Thy Logs" t-shirt when you download Logger. Secure your free ArcSight Logger TODAY! http://p.sf.net/sfu/arcsisghtdev2dev _______________________________________________ sqlmap-users mailing list sqlmap-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/sqlmap-users
