Questions tagged [sqlmap]

sqlmap is an "Automatic SQL injection and database takeover tool". It can be used to detect flaws in any software with an underlying SQL database

Filter by
Sorted by
Tagged with
9votes
5answers
67kviews

Specify parameters with SQLMAP

I'm a student learning php & mysql development. i have setup a private lab ( VM ) inside my computer to test & learn how sql injection works. When things get harder i use sqlmap to exploit and ...
user avatar
  • 2,827
6votes
1answer
6kviews

Setting particular type of attack with Sqlmap

Instead of testing all the possible attacks using sqlmap, is there any way to test a vulnerable server using a particular type of attack only? For example, I only want to attack a webserver with ...
user avatar
6votes
2answers
25kviews

SQLMAP - Post JSON data as body

Hi I'm trying to do a SQL injection in a login form. With BurpSuite I intercept the request: POST /xxxx/web/Login HTTP/1.1 Host: 10.0.0.70:42020 User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10....
user avatar
  • 698
6votes
2answers
8kviews

Sqlmap traffic capture

I am trying to understand how SQLmap works. For example, sqlmap finds injection on my site - Place: GET Parameter: selected Type: UNION query Title: MySQL UNION query (NULL) - 5 columns ...
user avatar
5votes
3answers
6kviews

Sqlmap dont work over TOR Vidalia in WindowsXP

D:\Python27>python sqlmap\sqlmap.py -u www.mail.ru --tor sqlmap/1.0-dev - automatic SQL injection and database takeover tool http://sqlmap.org [!] legal disclaimer: Usage of sqlmap for ...
user avatar
5votes
1answer
12kviews

How do i add a user name and a password to sqlmap?

I was running a SQLInjection with sqlmap. My page has an error of sql but the error shows up once you logged in your account(Example: page.com/login.php and when you log you go to page.com/index.php?...
user avatar
  • 83
4votes
1answer
2kviews

What's the difference between data source type pooled and unpooled?

I configuring mybatis and I must to choose a data source type POOLED or UNPOOLED. In that case what's the difference between data source type pooled and unpooled?
user avatar
4votes
1answer
18kviews

SQLMAP - how to insert into a database if stacked queries are not possible on a MYSQL server?

Pulling database tables and columns works fine using SQLMAP, but as I try to execute an INSERT statement I get the following error: query: sqlmap -u "http://www.example.com/details.php?item_id=327" -...
user avatar
  • 2,938
4votes
4answers
18kviews

sqlmap is too slow

Here's an example. Just trying to list the databases: python sqlmap.py -u "http://somesite.com/?id=1" --dbs [15:20:32] [INFO] fetching database names [15:20:32] [INFO] fetching number of databases [...
user avatar
  • 12.3k
3votes
2answers
15kviews

Sqlmap, using technique

In sqlmap I want to use time-based blind sqli technique. --technique= comes with a default of BEUSTQ which letter should use for time based blind only?
user avatar
3votes
1answer
19kviews

Sqlmap post data

I was trying to run sqlmap with method POST but I got this error: [CRITICAL] no parameter(s) found for testing in the provided data (e.g. GET parameter 'id' in 'www.site.com/index.php?id=1') Now, I ...
user avatar
  • 1,229
3votes
4answers
4kviews

SQLMAP to test sql injection

I ran SQLMAP to test SQL injection for one of the site, and got the below information. sqlmap identified the following injection points with a total of 78 HTTP(s) requests: --- Place: GET Parameter: ...
user avatar
  • 272
3votes
0answers
834views

mybatis typeHandler not work

I have a sql like this <select id="getData" parameterType="map" resultMap="dataMapper"> SELECT name FROM TABLE </select> and resultMap like this <resultMap id="dataMapper" type="...
user avatar
  • 41
3votes
0answers
7kviews

SQLMap and SSL error

python sqlmap.py -u "https://bake-house.com/" --random-agent -v 3 [15:38:18] [DEBUG] cleaning up configuration parameters [15:38:18] [DEBUG] checking for WebSocket [15:38:18] [DEBUG] setting the ...
user avatar
2votes
4answers
43kviews

How to inject a part of cookie using sqlmap

I need to do SQL injection on a part of cookie using sqlmap. The target URL is static. A sample cookie: Cookie1=blah_var1/blah_val1/blah_var2/blah_val2/searchtext/userinput/blah_var3/blah_val3/.../ ...
user avatar
  • 31
2votes
2answers
6kviews

Use date in MapSqlParameterSource in java Spring

I want to fetch result between start_date to end_date so that i can find my product report. sql = new StringBuilder() .append(" select oi.last_modified,oi.product_key") ...
user avatar
2votes
1answer
31views

Is it possible to use SQLMAP against an ODBC driver connection?

Is it possible to use sqlmap against an ODBC connection so that I can test the database with SQLMAP if there are some vulnerabilities? Maybe is it possible to use SQLMAP in the context of pyodbc? I ...
user avatar
2votes
2answers
7kviews

SQLMap: Can't establish SSL Connection: Need Solution

Am trying to use SQLMap with https but when i try "C:\Python27\sqlmap>sqlmap.py -u https://localhost:8774/App/console/index.jsp --force-ssl" it returns "Can't establish SSL Connection". So it ...
user avatar
2votes
1answer
1kviews

How can I tell sqlmap to check another link?

I have a sql injection point using POST request at the url http://example.com/submit.php which works with the data id=3&submit=submit. This saves the ID in a session $_SESSION[ id ] and you see ...
user avatar
  • 21
2votes
2answers
16kviews

Getting 'connection time out' error each time on the same step in sqlmap

On running sqlmap, I always get an error on following step and then connection gets timed out. [11:44:14] [INFO] testing 'AND boolean-based blind - WHERE or HAVING clause' [11:46:15] [CRITICAL] ...
user avatar
2votes
1answer
402views

verify sql injection through sqlmap

I have a small application, there is one field in which I can write a number and submit it, the page request goes to server and I get a response or no response (as per the argument) Now I checked the ...
user avatar
2votes
1answer
865views

How do I dump columns without datatype in SQLmap?

I would like to what's the command to dump only columns names, not data type. And also is it possible we can search in data? Like fetch the column data having @gmail.com or word 'admin.
user avatar
  • 21
2votes
0answers
4kviews

SQL injection with no spaces

I'm trying to exploit an SQL injection on a website (in the name of Science, of course). After some tests I found how the back-end works. The SQL query is formed like this: $query = 'SELECT * FROM ...
user avatar
  • 31
2votes
0answers
64views

Is there any way in sqlmap(sql-injection testing tool) to fetch database tables without running the complete test?

Is there any way in sqlmap(sql-injection testing tool) to fetch database tables without running the complete test? When I test a URL it takes a long time to Complete the whole test and retrieve ...
user avatar
1vote
3answers
12kviews

Connecting directly to database with credentials in SQLMap

I have the credentials of a TARGET website database and SQLMap Claims that you can connect to the database directly Here are my Commands on SQLMap in Kali Linux sudo sqlmap -d mysql://USER:PASSWORD@...
user avatar
1vote
2answers
5kviews

tor not working with sqlmap

root@kali:~# sqlmap --tor --tor-type=SOCKS5 -u http://www.target.com/abc.php?cat=50 sqlmap/1.0-dev - automatic SQL injection and database takeover tool http://sqlmap.org [!] legal disclaimer: Usage ...
user avatar
  • 11
1vote
1answer
1kviews

fingerprinting the database with sqlmap

I have MySQL 5.1.58 and I executed the following command for fingerprinting the database with sqlmap python sqlmap.py -d "mysql://root:password@localhost:3306/northwind" --fingerprint' The output is ...
user avatar
  • 92
1vote
3answers
4kviews

Using two different versions of python but sqlmap needs 2.7

I've recently started using sqlmap and found out it needs python2.7. I installed 2.7 and added it to my PATH along with 3.4. My current path looks like this: c:\Other-Programs\;c:\Python27;c:\...
user avatar
  • 1,973
1vote
1answer
2kviews

sqlmap - add a dynamic token at each request

I'm doing a challenge where there is a webpage which allows sql injection. Every request submitted needs a token which you retrieve from another webpage. The token is valid limited time and for one ...
user avatar
  • 359
1vote
3answers
2kviews

Cannot create PoolableConnectionFactory (unknown system variable 'language')

Anyone who had troubled with this error? Cannot create PoolableConnectionFactory (unknown system variable 'language') Programming with java, mysql, ibatis. Added some codes and existing codes make ...
user avatar
  • 71
1vote
2answers
2kviews

Getting hostname using sqlmap

There is a website abc.com which is vulnerable to SQL injection, I have verified this via sqlmap , So i got the username and password after this https://github.com/sqlmapproject/sqlmap/wiki/Usage ...
user avatar
  • 1,685
1vote
1answer
84views

How sqlmap internally works?

I'm trying to capture sqlmap traffic but I only see a single HTTP GET in wireshark without sql injection (its just the url I provide). I would expect 1 HTTP GET request per try (per sql injection then)...
user avatar
  • 247
1vote
1answer
208views

Retrieving comments from MySQL tables with sqlmap

I added a table comment in MySQL (northwind database) as follows ALTER TABLE northwind.fornitori COMMENT = 'tabella fornitori'; and I can retrieve the table comment with the following query SELECT ...
user avatar
  • 92
1vote
1answer
2kviews

How to set up sqlmap injection with xampp?

Now I use xampp for simulate server and I don't know how to post my code stackoverflow doesn't let me do. So I download Python ver2.7 and sqlmap for trying to injection my website (.php). and I ...
user avatar
  • 13
1vote
1answer
2kviews

SQLMap succesul inject query browsing

i was wondering if there is a way to browse an SQL query SQLMap was using at the moment of injection so that I could paste this query into my browser and watch it work itself, without automated tools. ...
user avatar
  • 11
1vote
1answer
2kviews

sqlmap inject via parameters in soap body?

The soap body is like blow : <?xml version="1.0" encoding="utf-8"?> <soap:Envelope xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:...
user avatar
  • 1,220
1vote
1answer
10kviews

Sqlmap parameter "might not be injectable"

Im starting with sqlmap and I have the following doubt: When I try to use sqlmap (trying to bypass waf) using this snippet: sqlmap.py -u "http://prefing.umsa.edu.bo/index.php?option=com_newsfeeds&...
user avatar
1vote
0answers
23views

sqlmp encodes parameter and payload

I have a cookie with base64 encoded json data that is vulnerable to sql injection. I'm trying to get sqlmap to base64 encode the payload but it keeps encoding the leading json code as well. Cookie: ...
user avatar
  • 11
1vote
0answers
779views

Specified file 'sql.txt' does not contain a usable HTTP request (with parameters)

Whenever I am Using - sqlmap -r sql.txt --dbms=MYSQL --dbs --batch following result get displayed. └─# sqlmap -r sql.txt --dbms=MYSQL --dbs --batch ...
user avatar
  • 11
1vote
0answers
170views

SQLMap host does not seem to be injectable, does this mean there are no vulnerabilities?

python sqlmap.py -u "https://localhost:8080" --level=5 --risk=5 [15:13:30] [WARNING] parameter 'Host' does not seem to be injectable [15:13:30] [CRITICAL] all tested parameters do not ...
user avatar
  • 109
1vote
0answers
173views

How to use sqlmap to scan entire app (full site scan)?

Suppose I have a rails app running on http://localhost:3000/, how can I make sqlmap crawl an entire app and attempt injection on every single form it finds? Note: my app is about 20 pages, so it ...
user avatar
  • 24.8k
1vote
1answer
623views

SQLMAP missing one or more core extensions ('gzip', 'ssl', 'sqlite3', 'zlib')

How to solve the following problem? [16:49:39] [CRITICAL] missing one or more core extensions ('gzip', 'ssl', 'sqlite3', 'zlib') most likely because current version of Python has been built without ...
user avatar
1vote
1answer
2kviews

using SQLMAP to test SQL injection in ASP.NET web application

I am trying to get SQLMAP tool to test the possibilities of SQL injection on my asp.net web application which has forms authentication. But I am not getting any clear directions on this. I have tried ...
user avatar
1vote
0answers
895views

SQLMAP --eval parameter, base64 a parameter containing hyphens

As suggested here https://security.stackexchange.com/questions/165528/sqlmap-eval-parameter-base64-a-parameter-containing-hyphens?noredirect=1#comment314635_165528 I move my question on Stack Overflow....
user avatar
  • 310
1vote
1answer
3kviews

How to use sqlmap payload in browser manually?

When we use sqlmap, it does everything automatically for finding sql injection of a website. I'm interested in that I send malicious queries directly in my browser and get the results in it, but when ...
user avatar
1vote
0answers
55views

Security issue with port 80

Please see the code below: public ActionResult URLInjection(string id) { string connectionString = ConfigurationManager.ConnectionStrings["SQLInjection"].ToString(); ...
user avatar
  • 13.8k
1vote
2answers
788views

How to update Sqlmap with git?

I'm try to update my sqlmap in the Linux. But I get the error like this : error pathspec did not match any file s known to git. I'm just a freshman, and I am not too familiar with Git. How can I ...
user avatar
  • 81
1vote
0answers
315views

How to use the sqlmap installed from macports?

I installed sqlmap from macports 2.3.4 on macOS Sierra 10.12 sqlmap @0.9_1 (security, databases, python) sqlmap is an open source penetration testing tool. Then found: > sqlmap zsh: command ...
user avatar
  • 311
1vote
0answers
208views

Plugin for integrating SQLMAP with Burp Suite

I am trying to do SQL Injection using the SQLMAP Burp Plugin which I downloaded from http://code.google.com/p/gason/downloads/list. I have followed the steps for windows provided in http://resources....
user avatar
1vote
1answer
629views

sqlMapClient.startTransaction() - cases

Is it possible to use sqlMapClient.startTransaction(); and sqlMapClient.commitTransaction(); in the case of Select statements? I have given start and commit transaction for insert , update and select ...
user avatar

15 30 50 per page