[sqlmap-users] sql injection without URL Parameter
Brought to you by:
inquisb
Menu
▾
▴
[sqlmap-users] sql injection without URL Parameter
|
From: Christoph A. <ca...@gm...> - 2010-07-15 23:08:29
|
Hi, is there a way to tell sqlmap that it should exploit an sql injection flaw within the URL (no parameters)? E.g. example.com/folder/1 example.com/folder/1+union+select... As the page requires authentication I specify also the --cookie parameter. sqlmap seams only to test cookie fields and as there is no URL parameter (eg. ..?id=1) I can't use the -p option. kind regards, christoph |
