Evening all,
I had an SQL injection into a MySQL5-based web application the other week
which involved me having control over the column list being selected. I
tried sqlmap against the URL, but it didn't find the injection point. I
tried again, taking the --level and --risk a little higher, but still
nothing.
In the end, I manually exploited it using a sub-select. Was I doing
something wrong with sqlmap, or will it not identify injection points like
that? I can provide an example of the query the application was using if
this helps.
Regards,
Matt
------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today's security and
threat landscape has changed and how IT managers can respond. Discussions
will include endpoint security, mobile security and the latest in malware
threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
_______________________________________________
sqlmap-users mailing list
sqlmap-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/sqlmap-users
