Hi.
Have you tried like this:
--sql-query="bla bla 'quoted' bla bla"
Kind regards
On Mon, Nov 28, 2011 at 11:14 PM, Iago Sousa <146050...@gmail.com> wrote:
> You can add quote mark in sql-query
>
> On Mon, Nov 28, 2011 at 3:29 PM, Jacco van Tuijl
> <jaccovantu...@gmail.com>wrote:
>
>> [13:27:26] [CRITICAL] unhandled exception in sqlmap/1.0-dev (r4552),
>> retry your run with the latest development version from the Subversion
>> repository. If the exception persists, please send by e-mail to
>> sqlmap-users@lists.sourceforge.net the following text and any
>> information required to reproduce the bug. The developers will try to
>> reproduce the bug, fix it accordingly and get back to you.
>> sqlmap version: 1.0-dev (r4552)
>> Python version: 2.6.5
>> Operating system: posix
>> Command line: sqlmap.py -u *********************************************
>> --tor --random-agent --exclude-sysdb --dbms=mysql --level=5 --risk=5
>> --technique=B -o --sql-query=select name,password from abc_user
>> Technique: BOOLEAN
>> Back-end DBMS: MySQL (identified)
>> Traceback (most recent call last):
>> File "/pentest/database/sqlmap/sqlmap/_sqlmap.py", line 86, in main
>> start()
>> File "/pentest/database/sqlmap/sqlmap/lib/controller/controller.py",
>> line 478, in start
>> injection = checkSqlInjection(place, parameter, value)
>> File "/pentest/database/sqlmap/sqlmap/lib/controller/checks.py", line
>> 344, in checkSqlInjection
>> trueResult = Request.queryPage(reqPayload, place, raise404=False)
>> File "/pentest/database/sqlmap/sqlmap/lib/request/connect.py", line
>> 709, in queryPage
>> page, headers, code = Connect.getPage(url=uri, get=get, post=post,
>> cookie=cookie, ua=ua, referer=referer, silent=silent, method=method,
>> auxHeaders=auxHeaders, response=response, raise404=raise404,
>> ignoreTimeout=timeBasedCompare)
>> File "/pentest/database/sqlmap/sqlmap/lib/request/connect.py", line
>> 301, in getPage
>> conn = urllib2.urlopen(req)
>> File "/usr/lib/python2.6/urllib2.py", line 126, in urlopen
>> return _opener.open(url, data, timeout)
>> File "/usr/lib/python2.6/urllib2.py", line 391, in open
>> response = self._open(req, data)
>> File "/usr/lib/python2.6/urllib2.py", line 409, in _open
>> '_open', req)
>> File "/usr/lib/python2.6/urllib2.py", line 369, in _call_chain
>> result = func(*args)
>> File "/pentest/database/sqlmap/sqlmap/extra/keepalive/keepalive.py",
>> line 209, in http_open
>> return self.do_open(HTTPConnection, req)
>> File "/pentest/database/sqlmap/sqlmap/extra/keepalive/keepalive.py",
>> line 182, in do_open
>> self._start_connection(h, req)
>> File "/pentest/database/sqlmap/sqlmap/extra/keepalive/keepalive.py",
>> line 141, in _start_connection
>> h.endheaders()
>> File "/pentest/database/sqlmap/sqlmap/extra/keepalive/keepalive.py",
>> line 336, in endheaders
>> self._send_output()
>> File "/usr/lib/python2.6/httplib.py", line 776, in _send_output
>> self.send(msg)
>> File "/pentest/database/sqlmap/sqlmap/extra/keepalive/keepalive.py",
>> line 339, in send
>> httplib.HTTPConnection.send(self, unicodeencode(str, kb.pageEncoding))
>> File "/usr/lib/python2.6/httplib.py", line 735, in send
>> self.connect()
>> File "/usr/lib/python2.6/httplib.py", line 716, in connect
>> self.timeout)
>> File "/usr/lib/python2.6/socket.py", line 507, in create_connection
>> sock.connect(sa)
>> File "/pentest/database/sqlmap/sqlmap/extra/socks/socks.py", line 369,
>> in connect
>> self.__negotiatesocks5(destpair[0], destpair[1])
>> File "/pentest/database/sqlmap/sqlmap/extra/socks/socks.py", line 236,
>> in __negotiatesocks5
>> raise Socks5Error((ord(resp[1:2]), _socks5errors[ord(resp[1:2])]))
>> Socks5Error: (1, 'general SOCKS server failure')
>>
>>
>> ------------------------------------------------------------------------------
>> All the data continuously generated in your IT infrastructure
>> contains a definitive record of customers, application performance,
>> security threats, fraudulent activity, and more. Splunk takes this
>> data and makes sense of it. IT sense. And common sense.
>> http://p.sf.net/sfu/splunk-novd2d
>> _______________________________________________
>> sqlmap-users mailing list
>> sqlmap-users@lists.sourceforge.net
>> https://lists.sourceforge.net/lists/listinfo/sqlmap-users
>>
>>
>
>
> --
> Iago Sousa
>
>
>
> ------------------------------------------------------------------------------
> All the data continuously generated in your IT infrastructure
> contains a definitive record of customers, application performance,
> security threats, fraudulent activity, and more. Splunk takes this
> data and makes sense of it. IT sense. And common sense.
> http://p.sf.net/sfu/splunk-novd2d
> _______________________________________________
> sqlmap-users mailing list
> sqlmap-users@lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/sqlmap-users
>
>
--
Miroslav Stampar
http://about.me/stamparm
------------------------------------------------------------------------------
All the data continuously generated in your IT infrastructure
contains a definitive record of customers, application performance,
security threats, fraudulent activity, and more. Splunk takes this
data and makes sense of it. IT sense. And common sense.
http://p.sf.net/sfu/splunk-novd2d
_______________________________________________
sqlmap-users mailing list
sqlmap-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/sqlmap-users
