You can tell the program to inject anywhere. If your injection point is in
a slightly weirder place (and, to be honest, even if it's not) then the
easiest thing to do is to save the HTTP request to a file, place a * where
you want the program to inject and use the -r command to point SQLMap at
the right request file. - Chris
On 14 January 2014 07:38, hooshmand k <hooshman...@gmail.com> wrote:
> Hi,
>
> It is not mandatory to inject via url. you can use other user input data
> such as form fields, referrer address, user-agent, etc.
> you can do this by change the "risk" and "level" options.
>
> Best Regards
>
>
> ------------------------------------------------------------------------------
> CenturyLink Cloud: The Leader in Enterprise Cloud Services.
> Learn Why More Businesses Are Choosing CenturyLink Cloud For
> Critical Workloads, Development Environments & Everything In Between.
> Get a Quote or Start a Free Trial Today.
>
> http://pubads.g.doubleclick.net/gampad/clk?id=119420431&iu=/4140/ostg.clktrk
> _______________________________________________
> sqlmap-users mailing list
> sqlmap-users@lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/sqlmap-users
>
>
------------------------------------------------------------------------------
CenturyLink Cloud: The Leader in Enterprise Cloud Services.
Learn Why More Businesses Are Choosing CenturyLink Cloud For
Critical Workloads, Development Environments & Everything In Between.
Get a Quote or Start a Free Trial Today.
http://pubads.g.doubleclick.net/gampad/clk?id=119420431&iu=/4140/ostg.clktrk
_______________________________________________
sqlmap-users mailing list
sqlmap-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/sqlmap-users
