You can add quote mark in sql-query
On Mon, Nov 28, 2011 at 3:29 PM, Jacco van Tuijl <jaccovantu...@gmail.com>wrote:
> [13:27:26] [CRITICAL] unhandled exception in sqlmap/1.0-dev (r4552), retry
> your run with the latest development version from the Subversion
> repository. If the exception persists, please send by e-mail to
> sqlmap-users@lists.sourceforge.net the following text and any information
> required to reproduce the bug. The developers will try to reproduce the
> bug, fix it accordingly and get back to you.
> sqlmap version: 1.0-dev (r4552)
> Python version: 2.6.5
> Operating system: posix
> Command line: sqlmap.py -u *********************************************
> --tor --random-agent --exclude-sysdb --dbms=mysql --level=5 --risk=5
> --technique=B -o --sql-query=select name,password from abc_user
> Technique: BOOLEAN
> Back-end DBMS: MySQL (identified)
> Traceback (most recent call last):
> File "/pentest/database/sqlmap/sqlmap/_sqlmap.py", line 86, in main
> start()
> File "/pentest/database/sqlmap/sqlmap/lib/controller/controller.py",
> line 478, in start
> injection = checkSqlInjection(place, parameter, value)
> File "/pentest/database/sqlmap/sqlmap/lib/controller/checks.py", line
> 344, in checkSqlInjection
> trueResult = Request.queryPage(reqPayload, place, raise404=False)
> File "/pentest/database/sqlmap/sqlmap/lib/request/connect.py", line 709,
> in queryPage
> page, headers, code = Connect.getPage(url=uri, get=get, post=post,
> cookie=cookie, ua=ua, referer=referer, silent=silent, method=method,
> auxHeaders=auxHeaders, response=response, raise404=raise404,
> ignoreTimeout=timeBasedCompare)
> File "/pentest/database/sqlmap/sqlmap/lib/request/connect.py", line 301,
> in getPage
> conn = urllib2.urlopen(req)
> File "/usr/lib/python2.6/urllib2.py", line 126, in urlopen
> return _opener.open(url, data, timeout)
> File "/usr/lib/python2.6/urllib2.py", line 391, in open
> response = self._open(req, data)
> File "/usr/lib/python2.6/urllib2.py", line 409, in _open
> '_open', req)
> File "/usr/lib/python2.6/urllib2.py", line 369, in _call_chain
> result = func(*args)
> File "/pentest/database/sqlmap/sqlmap/extra/keepalive/keepalive.py",
> line 209, in http_open
> return self.do_open(HTTPConnection, req)
> File "/pentest/database/sqlmap/sqlmap/extra/keepalive/keepalive.py",
> line 182, in do_open
> self._start_connection(h, req)
> File "/pentest/database/sqlmap/sqlmap/extra/keepalive/keepalive.py",
> line 141, in _start_connection
> h.endheaders()
> File "/pentest/database/sqlmap/sqlmap/extra/keepalive/keepalive.py",
> line 336, in endheaders
> self._send_output()
> File "/usr/lib/python2.6/httplib.py", line 776, in _send_output
> self.send(msg)
> File "/pentest/database/sqlmap/sqlmap/extra/keepalive/keepalive.py",
> line 339, in send
> httplib.HTTPConnection.send(self, unicodeencode(str, kb.pageEncoding))
> File "/usr/lib/python2.6/httplib.py", line 735, in send
> self.connect()
> File "/usr/lib/python2.6/httplib.py", line 716, in connect
> self.timeout)
> File "/usr/lib/python2.6/socket.py", line 507, in create_connection
> sock.connect(sa)
> File "/pentest/database/sqlmap/sqlmap/extra/socks/socks.py", line 369,
> in connect
> self.__negotiatesocks5(destpair[0], destpair[1])
> File "/pentest/database/sqlmap/sqlmap/extra/socks/socks.py", line 236,
> in __negotiatesocks5
> raise Socks5Error((ord(resp[1:2]), _socks5errors[ord(resp[1:2])]))
> Socks5Error: (1, 'general SOCKS server failure')
>
>
> ------------------------------------------------------------------------------
> All the data continuously generated in your IT infrastructure
> contains a definitive record of customers, application performance,
> security threats, fraudulent activity, and more. Splunk takes this
> data and makes sense of it. IT sense. And common sense.
> http://p.sf.net/sfu/splunk-novd2d
> _______________________________________________
> sqlmap-users mailing list
> sqlmap-users@lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/sqlmap-users
>
>
--
Iago Sousa
------------------------------------------------------------------------------
All the data continuously generated in your IT infrastructure
contains a definitive record of customers, application performance,
security threats, fraudulent activity, and more. Splunk takes this
data and makes sense of it. IT sense. And common sense.
http://p.sf.net/sfu/splunk-novd2d
_______________________________________________
sqlmap-users mailing list
sqlmap-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/sqlmap-users