Re: [sqlmap-users] Blind SQL injection in Header
Brought to you by:
inquisb
Menu
▾
▴
Re: [sqlmap-users] Blind SQL injection in Header
|
From: David A. <dav...@gm...> - 2012-12-18 08:31:21
|
Hi Miroslav, In this case, there are only changes in the http headers. Thanks for your help. KR On Mon, Dec 17, 2012 at 11:15 PM, Miroslav Stampar < mir...@gm...> wrote: > Hi. > > It doesn't look there. But, if Location is changed then there should be > redirection (with other potential strings). > > Kind regards > On 17.12.2012. 22:12, "David Alvarez" <dav...@gm...> wrote: > >> Hello, >> >> I detected a blind SQL injection in a MySQL database. The difference >> between its responses its in the Location HTTP header. But, when I set the >> "string" switch, sqlmap doesn`t recognize a true statement. Is sqlmap >> looking at http header? >> >> Thanks. >> >> Kind Regads, >> David Álvarez >> >> >> ------------------------------------------------------------------------------ >> LogMeIn Rescue: Anywhere, Anytime Remote support for IT. Free Trial >> Remotely access PCs and mobile devices and provide instant support >> Improve your efficiency, and focus on delivering more value-add services >> Discover what IT Professionals Know. Rescue delivers >> http://p.sf.net/sfu/logmein_12329d2d >> _______________________________________________ >> sqlmap-users mailing list >> sql...@li... >> https://lists.sourceforge.net/lists/listinfo/sqlmap-users >> >> |
