[sqlmap-users] SQLi in parameter's name
Brought to you by:
inquisb
Menu
▾
▴
[sqlmap-users] SQLi in parameter's name
|
From: a a <rez...@se...> - 2013-03-27 10:02:28
|
Hello, During one assessment I have found the web application that is vulnerable to the SQL injection not in parameter values but in parameter names itself. This is something sqlmap is unable to find. Is it possible to add such functionality (e.g. by optional parameter) to sqlmap? Regards Karel Marhoul |
