Thread: [sqlmap-users] injectable website i can't be able to find by sqlmap
Brought to you by:
inquisb
Menu
▾
▴
sqlmap-users
|
From: B. <sto...@qq...> - 2012-06-25 07:43:56
|
http://www.alcosens.com/fsbClient/ezboard.jsp injectable parameter is: "searchWord" www.mobcstyle.com/goods/search.php", using HTTP method GET. The injectable parameter is: "search_price_start is there anyone can use sqlmap find injected point? best regards Bob |
|
From: B. <sto...@qq...> - 2012-06-25 08:02:19
|
http://www.alcosens.com/fsbClient/ezboard.jsp injectable parameter is: "searchWord" www.mobcstyle.com/goods/search.php", using HTTP method GET. The injectable parameter is: "search_price_start "http://www.keyway.com.tw/pro_overview.php?_sn=2%27%20AND%208126=8126%20AND%20%27Cqlm%27=%27Cqlm" is there anyone can use sqlmap find injected point? best regards Bob |
|
From: James <ja...@ev...> - 2012-06-25 11:57:15
|
Are you serious? DON'T POST VULNERABLE URLS ON THE MAILING LIST. This mailing list needs to move to something more censored if people are going to be so stupid. On 06/25/2012 04:02 AM, Bob wrote: > http://www.alcosens.com/fsbClient/ezboard.jsp > injectable parameter is: "searchWord" > > www.mobcstyle.com/goods/search.php", using HTTP method GET. The > injectable parameter is: "search_price_start > > "http://www.keyway.com.tw/pro_overview.php?_sn=2%27%20AND%208126=8126%20AND%20%27Cqlm%27=%27Cqlm" > > > is there anyone can use sqlmap find injected point? > > best regards > Bob > > > ------------------------------------------------------------------------------ > Live Security Virtual Conference > Exclusive live event will cover all the ways today's security and > threat landscape has changed and how IT managers can respond. Discussions > will include endpoint security, mobile security and the latest in malware > threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ > > > _______________________________________________ > sqlmap-users mailing list > sql...@li... > https://lists.sourceforge.net/lists/listinfo/sqlmap-users > |
|
From: Iago S. <146...@gm...> - 2012-06-25 12:20:07
|
Yes, In some places is illegal the usage of pentest without mutual consent. (Or is opposite?) I advise, read the legal disclaimer in sqlmap's banner. And get it as a recommendation. Don't keep posting url vulns in mailing list, only the traffic file if is required by Miroslav (in private conversation) (to correct a bug or something like that). On Mon, Jun 25, 2012 at 8:57 AM, James <ja...@ev...> wrote: > ** > Are you serious? > > DON'T POST VULNERABLE URLS ON THE MAILING LIST. > > This mailing list needs to move to something more censored if people are > going to be so stupid. > > > On 06/25/2012 04:02 AM, Bob wrote: > > http://www.alcosens.com/fsbClient/ezboard.jsp > injectable parameter is: "searchWord" > > www.mobcstyle.com/goods/search.php", using HTTP method GET. The > injectable parameter is: "search_price_start > > > "http://www.keyway.com.tw/pro_overview.php?_sn=2%27%20AND%208126=8126%20AND%20%27Cqlm%27=%27Cqlm"<http://www.keyway.com.tw/pro_overview.php?_sn=2%27%20AND%208126=8126%20AND%20%27Cqlm%27=%27Cqlm> > > is there anyone can use sqlmap find injected point? > > best regards > Bob > > > ------------------------------------------------------------------------------ > Live Security Virtual Conference > Exclusive live event will cover all the ways today's security and > threat landscape has changed and how IT managers can respond. Discussions > will include endpoint security, mobile security and the latest in malware > threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ > > > _______________________________________________ > sqlmap-users mailing lis...@li...https://lists.sourceforge.net/lists/listinfo/sqlmap-users > > > > > ------------------------------------------------------------------------------ > Live Security Virtual Conference > Exclusive live event will cover all the ways today's security and > threat landscape has changed and how IT managers can respond. Discussions > will include endpoint security, mobile security and the latest in malware > threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ > _______________________________________________ > sqlmap-users mailing list > sql...@li... > https://lists.sourceforge.net/lists/listinfo/sqlmap-users > > -- Regards, Iago Sousa |
|
From: Miroslav S. <mir...@gm...> - 2012-06-25 15:40:33
|
Hi Bob. James and Iago are right. Please don't use mailing list to post real target URLs. Kind regards, Miroslav Stampar On Mon, Jun 25, 2012 at 2:19 PM, Iago Sousa <146...@gm...> wrote: > Yes, > In some places is illegal the usage of pentest without mutual consent. (Or > is opposite?) > > I advise, read the legal disclaimer in sqlmap's banner. > > And get it as a recommendation. Don't keep posting url vulns in mailing > list, only the traffic file if is required by Miroslav (in private > conversation) (to correct a bug or something like that). > > > On Mon, Jun 25, 2012 at 8:57 AM, James <ja...@ev...> wrote: > >> ** >> Are you serious? >> >> DON'T POST VULNERABLE URLS ON THE MAILING LIST. >> >> This mailing list needs to move to something more censored if people are >> going to be so stupid. >> >> >> On 06/25/2012 04:02 AM, Bob wrote: >> >> http://www.alcosens.com/fsbClient/ezboard.jsp >> injectable parameter is: "searchWord" >> >> www.mobcstyle.com/goods/search.php", using HTTP method GET. The >> injectable parameter is: "search_price_start >> >> >> "http://www.keyway.com.tw/pro_overview.php?_sn=2%27%20AND%208126=8126%20AND%20%27Cqlm%27=%27Cqlm"<http://www.keyway.com.tw/pro_overview.php?_sn=2%27%20AND%208126=8126%20AND%20%27Cqlm%27=%27Cqlm> >> >> is there anyone can use sqlmap find injected point? >> >> best regards >> Bob >> >> >> ------------------------------------------------------------------------------ >> Live Security Virtual Conference >> Exclusive live event will cover all the ways today's security and >> threat landscape has changed and how IT managers can respond. Discussions >> will include endpoint security, mobile security and the latest in malware >> threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ >> >> >> _______________________________________________ >> sqlmap-users mailing lis...@li...https://lists.sourceforge.net/lists/listinfo/sqlmap-users >> >> >> >> >> ------------------------------------------------------------------------------ >> Live Security Virtual Conference >> Exclusive live event will cover all the ways today's security and >> threat landscape has changed and how IT managers can respond. Discussions >> will include endpoint security, mobile security and the latest in malware >> threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ >> _______________________________________________ >> sqlmap-users mailing list >> sql...@li... >> https://lists.sourceforge.net/lists/listinfo/sqlmap-users >> >> > > > -- > Regards, > Iago Sousa > > > ------------------------------------------------------------------------------ > Live Security Virtual Conference > Exclusive live event will cover all the ways today's security and > threat landscape has changed and how IT managers can respond. Discussions > will include endpoint security, mobile security and the latest in malware > threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ > _______________________________________________ > sqlmap-users mailing list > sql...@li... > https://lists.sourceforge.net/lists/listinfo/sqlmap-users > > -- Miroslav Stampar http://about.me/stamparm |
|
From: James <ja...@ev...> - 2012-06-25 16:51:32
|
You shouldn't be attacking sites that aren't yours anyway. This is a federal crime and you've basically just admitted guilt on a public mailing list. Good job. On 06/25/2012 11:40 AM, Miroslav Stampar wrote: > Hi Bob. > > James and Iago are right. Please don't use mailing list to post real > target URLs. > > Kind regards, > Miroslav Stampar > > On Mon, Jun 25, 2012 at 2:19 PM, Iago Sousa <146...@gm... > <mailto:146...@gm...>> wrote: > > Yes, > In some places is illegal the usage of pentest without mutual > consent. (Or is opposite?) > > I advise, read the legal disclaimer in sqlmap's banner. > > And get it as a recommendation. Don't keep posting url vulns in > mailing list, only the traffic file if is required by Miroslav (in > private conversation) (to correct a bug or something like that). > > > On Mon, Jun 25, 2012 at 8:57 AM, James <ja...@ev... > <mailto:ja...@ev...>> wrote: > > Are you serious? > > DON'T POST VULNERABLE URLS ON THE MAILING LIST. > > This mailing list needs to move to something more censored if > people are going to be so stupid. > > > On 06/25/2012 04:02 AM, Bob wrote: >> http://www.alcosens.com/fsbClient/ezboard.jsp >> injectable parameter is: "searchWord" >> >> www.mobcstyle.com/goods/search.php >> <http://www.mobcstyle.com/goods/search.php>", using HTTP >> method GET. The injectable parameter is: "search_price_start >> >> "http://www.keyway.com.tw/pro_overview.php?_sn=2%27%20AND%208126=8126%20AND%20%27Cqlm%27=%27Cqlm" >> <http://www.keyway.com.tw/pro_overview.php?_sn=2%27%20AND%208126=8126%20AND%20%27Cqlm%27=%27Cqlm> >> >> >> is there anyone can use sqlmap find injected point? >> >> best regards >> Bob >> >> ------------------------------------------------------------------------------ >> Live Security Virtual Conference >> Exclusive live event will cover all the ways today's security and >> threat landscape has changed and how IT managers can respond. Discussions >> will include endpoint security, mobile security and the latest in malware >> threats.http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ >> >> _______________________________________________ >> sqlmap-users mailing list >> sql...@li... <mailto:sql...@li...> >> https://lists.sourceforge.net/lists/listinfo/sqlmap-users >> > > > ------------------------------------------------------------------------------ > Live Security Virtual Conference > Exclusive live event will cover all the ways today's security and > threat landscape has changed and how IT managers can respond. > Discussions > will include endpoint security, mobile security and the latest > in malware > threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ > _______________________________________________ > sqlmap-users mailing list > sql...@li... > <mailto:sql...@li...> > https://lists.sourceforge.net/lists/listinfo/sqlmap-users > > > > > -- > Regards, > Iago Sousa > > ------------------------------------------------------------------------------ > Live Security Virtual Conference > Exclusive live event will cover all the ways today's security and > threat landscape has changed and how IT managers can respond. > Discussions > will include endpoint security, mobile security and the latest in > malware > threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ > _______________________________________________ > sqlmap-users mailing list > sql...@li... > <mailto:sql...@li...> > https://lists.sourceforge.net/lists/listinfo/sqlmap-users > > > > > -- > Miroslav Stampar > http://about.me/stamparm > > > ------------------------------------------------------------------------------ > Live Security Virtual Conference > Exclusive live event will cover all the ways today's security and > threat landscape has changed and how IT managers can respond. Discussions > will include endpoint security, mobile security and the latest in malware > threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ > > > _______________________________________________ > sqlmap-users mailing list > sql...@li... > https://lists.sourceforge.net/lists/listinfo/sqlmap-users > |
×
Want the latest updates on software, tech news, and AI?
Get latest updates about software, tech news, and AI from SourceForge directly in your inbox once a month.
Thanks for helping keep SourceForge clean.
X