Thread: [sqlmap-users] bug report
Brought to you by:
inquisb
Menu
▾
▴
sqlmap-users
|
From: xingxing g. <it...@gm...> - 2010-01-09 15:17:17
|
sqlmap version: 0.7
Python version: 2.6.4
Operating system: ubuntu9.10
Traceback (most recent call last):
File "/usr/bin/sqlmap", line 84, in main
start()
File "/usr/share/sqlmap/lib/controller/controller.py", line 263, in start
action()
File "/usr/share/sqlmap/lib/controller/action.py", line 49, in action
conf.dbmsHandler = setHandler()
File "/usr/share/sqlmap/lib/controller/handler.py", line 67, in setHandler
if dbmsHandler.checkDbms():
File "/usr/share/sqlmap/plugins/dbms/mysql.py", line 283, in checkDbms
self.getBanner()
File "/usr/share/sqlmap/plugins/generic/enumeration.py", line 130, in
getBanner
setOs()
File "/usr/share/sqlmap/lib/core/session.py", line 191, in setOs
infoMsg += " Service Pack %d" % kb.osSP
TypeError: %d format: a number is required, not NoneType
|
|
From: m4l1c3 <mal...@gm...> - 2011-01-27 02:04:18
|
./sqlmap.py -u "http://DOMAIN:80/LANG/DIR/PARAM.php?xxx=999" --passwords
sqlmap version: 0.9-dev (r3115)
Python version: 2.5.2
Operating system: posix
Traceback (most recent call last):
File "./sqlmap.py", line 83, in main
start()
File "/pentest/database/sqlmap-dev/lib/controller/controller.py", line
414, in start
action()
File "/pentest/database/sqlmap-dev/lib/controller/action.py", line 77, in
action
conf.dbmsHandler.getPasswordHashes(), "password hash")
File "/pentest/database/sqlmap-dev/plugins/generic/enumeration.py", line
238, in getPasswordHashes
for user, password in value:
ValueError: need more than 1 value to unpack
|
|
From: Miroslav S. <mir...@gm...> - 2011-01-27 13:10:58
|
union based data retrieving has some serious problems. maybe this
could illustrate:
in generic/enumeration.py (getPasswordHashes):
if isTechniqueAvailable(PAYLOAD.TECHNIQUE.UNION) or
isTechniqueAvailable(PAYLOAD.TECHNIQUE.ERROR) or conf.direct:
...
value = inject.getValue(query, blind=False)
if value:
import pdb
pdb.set_trace()
for user, password in value:
if not user or user == " ":
continue
at that import pdb value variable has the value of:
'__START__sa__DEL__0x01004086ceb60c90646a8ab9889fe3ed8e5c150b5460ece8425a__STOP__'
do you know if there is any possibility that getValue returns this kind of data?
kr
On Thu, Jan 27, 2011 at 3:04 AM, m4l1c3 <mal...@gm...> wrote:
>
> ./sqlmap.py -u "http://DOMAIN:80/LANG/DIR/PARAM.php?xxx=999" --passwords
>
>
>
> sqlmap version: 0.9-dev (r3115)
> Python version: 2.5.2
> Operating system: posix
> Traceback (most recent call last):
> File "./sqlmap.py", line 83, in main
> start()
> File "/pentest/database/sqlmap-dev/lib/controller/controller.py", line
> 414, in start
> action()
> File "/pentest/database/sqlmap-dev/lib/controller/action.py", line 77, in
> action
> conf.dbmsHandler.getPasswordHashes(), "password hash")
> File "/pentest/database/sqlmap-dev/plugins/generic/enumeration.py", line
> 238, in getPasswordHashes
> for user, password in value:
> ValueError: need more than 1 value to unpack
>
>
> ------------------------------------------------------------------------------
> Special Offer-- Download ArcSight Logger for FREE (a $49 USD value)!
> Finally, a world-class log management solution at an even better price-free!
> Download using promo code Free_Logger_4_Dev2Dev. Offer expires
> February 28th, so secure your free ArcSight Logger TODAY!
> http://p.sf.net/sfu/arcsight-sfd2d
> _______________________________________________
> sqlmap-users mailing list
> sql...@li...
> https://lists.sourceforge.net/lists/listinfo/sqlmap-users
>
>
--
Miroslav Stampar
E-mail / Jabber: miroslav.stampar (at) gmail.com
Mobile: +385921010204 (HR 0921010204)
PGP Key ID: 0xB5397B1B
Location: Zagreb, Croatia
|
|
From: Miroslav S. <mir...@gm...> - 2011-01-28 14:31:48
|
fixed kr On Thu, Jan 27, 2011 at 3:04 AM, m4l1c3 <mal...@gm...> wrote: > > ./sqlmap.py -u "http://DOMAIN:80/LANG/DIR/PARAM.php?xxx=999" --passwords > > > > sqlmap version: 0.9-dev (r3115) > Python version: 2.5.2 > Operating system: posix > Traceback (most recent call last): > File "./sqlmap.py", line 83, in main > start() > File "/pentest/database/sqlmap-dev/lib/controller/controller.py", line > 414, in start > action() > File "/pentest/database/sqlmap-dev/lib/controller/action.py", line 77, in > action > conf.dbmsHandler.getPasswordHashes(), "password hash") > File "/pentest/database/sqlmap-dev/plugins/generic/enumeration.py", line > 238, in getPasswordHashes > for user, password in value: > ValueError: need more than 1 value to unpack > > > ------------------------------------------------------------------------------ > Special Offer-- Download ArcSight Logger for FREE (a $49 USD value)! > Finally, a world-class log management solution at an even better price-free! > Download using promo code Free_Logger_4_Dev2Dev. Offer expires > February 28th, so secure your free ArcSight Logger TODAY! > http://p.sf.net/sfu/arcsight-sfd2d > _______________________________________________ > sqlmap-users mailing list > sql...@li... > https://lists.sourceforge.net/lists/listinfo/sqlmap-users > > -- Miroslav Stampar E-mail / Jabber: miroslav.stampar (at) gmail.com Mobile: +385921010204 (HR 0921010204) PGP Key ID: 0xB5397B1B Location: Zagreb, Croatia |
|
From: m4l1c3 <mal...@gm...> - 2011-01-28 13:01:08
|
./sqlmap.py -g "domain.xx ext:php" --dbs --batch -o
sqlmap version: 0.9-dev (r3122)
Python version: 2.5.2
Operating system: posix
Traceback (most recent call last):
File "./sqlmap.py", line 83, in main
start()
File "/pentest/database/sqlmap-dev/lib/controller/controller.py", line
254, in start
checkNullConnection()
File "/pentest/database/sqlmap-dev/lib/controller/checks.py", line 748, in
checkNullConnection
page, headers = Request.getPage(method=HTTPMETHOD.HEAD)
File "/pentest/database/sqlmap-dev/lib/request/connect.py", line 197, in
getPage
conn = urllib2.urlopen(req)
File "/usr/lib/python2.5/urllib2.py", line 124, in urlopen
return _opener.open(url, data)
File "/usr/lib/python2.5/urllib2.py", line 381, in open
response = self._open(req, data)
File "/usr/lib/python2.5/urllib2.py", line 399, in _open
'_open', req)
File "/usr/lib/python2.5/urllib2.py", line 360, in _call_chain
result = func(*args)
File "/pentest/database/sqlmap-dev/extra/keepalive/keepalive.py", line
208, in http_open
return self.do_open(HTTPConnection, req)
File "/pentest/database/sqlmap-dev/extra/keepalive/keepalive.py", line
179, in do_open
self._start_connection(h, req)
File "/pentest/database/sqlmap-dev/extra/keepalive/keepalive.py", line
138, in _start_connection
h.endheaders()
File "/pentest/database/sqlmap-dev/extra/keepalive/keepalive.py", line
336, in endheaders
self._send_output()
File "/usr/lib/python2.5/httplib.py", line 732, in _send_output
self.send(msg)
File "/usr/lib/python2.5/httplib.py", line 711, in send
self.sock.sendall(str)
File "<string>", line 1, in sendall
UnicodeEncodeError: 'ascii' codec can't encode characters in position 82-87:
ordinal not in range(128)
This doesn't look like problem to me, but I thought I'd pass it on if I
missed something.
|
|
From: Miroslav S. <mir...@gm...> - 2011-01-28 13:38:37
|
hi. this is a "relative" of a bug reported by black zero <tim...@gm...> dated 12/28/10 ([sqlmap-users] UnicodeEncodeError: 'ascii') which was patched at non-optimization level (normal connection module). now, it's being done at the keepalive module too. problem is introduced because of "non-ASCII conformant chars are used in headers" which python's httplib and urllib2 have (KNOWN) problems with. now, those problematic header values/characters are converted to the format described in http://en.wikipedia.org/wiki/Unicode_and_HTML. kr p.s. please update and report if problem(s) persist On Fri, Jan 28, 2011 at 2:01 PM, m4l1c3 <mal...@gm...> wrote: > ./sqlmap.py -g "domain.xx ext:php" --dbs --batch -o > > sqlmap version: 0.9-dev (r3122) > Python version: 2.5.2 > Operating system: posix > Traceback (most recent call last): > File "./sqlmap.py", line 83, in main > start() > File "/pentest/database/sqlmap-dev/lib/controller/controller.py", line > 254, in start > checkNullConnection() > File "/pentest/database/sqlmap-dev/lib/controller/checks.py", line 748, in > checkNullConnection > page, headers = Request.getPage(method=HTTPMETHOD.HEAD) > File "/pentest/database/sqlmap-dev/lib/request/connect.py", line 197, in > getPage > conn = urllib2.urlopen(req) > File "/usr/lib/python2.5/urllib2.py", line 124, in urlopen > return _opener.open(url, data) > File "/usr/lib/python2.5/urllib2.py", line 381, in open > response = self._open(req, data) > File "/usr/lib/python2.5/urllib2.py", line 399, in _open > '_open', req) > File "/usr/lib/python2.5/urllib2.py", line 360, in _call_chain > result = func(*args) > File "/pentest/database/sqlmap-dev/extra/keepalive/keepalive.py", line > 208, in http_open > return self.do_open(HTTPConnection, req) > File "/pentest/database/sqlmap-dev/extra/keepalive/keepalive.py", line > 179, in do_open > self._start_connection(h, req) > File "/pentest/database/sqlmap-dev/extra/keepalive/keepalive.py", line > 138, in _start_connection > h.endheaders() > File "/pentest/database/sqlmap-dev/extra/keepalive/keepalive.py", line > 336, in endheaders > self._send_output() > File "/usr/lib/python2.5/httplib.py", line 732, in _send_output > self.send(msg) > File "/usr/lib/python2.5/httplib.py", line 711, in send > self.sock.sendall(str) > File "<string>", line 1, in sendall > UnicodeEncodeError: 'ascii' codec can't encode characters in position 82-87: > ordinal not in range(128) > > > This doesn't look like problem to me, but I thought I'd pass it on if I > missed something. > > ------------------------------------------------------------------------------ > Special Offer-- Download ArcSight Logger for FREE (a $49 USD value)! > Finally, a world-class log management solution at an even better price-free! > Download using promo code Free_Logger_4_Dev2Dev. Offer expires > February 28th, so secure your free ArcSight Logger TODAY! > http://p.sf.net/sfu/arcsight-sfd2d > _______________________________________________ > sqlmap-users mailing list > sql...@li... > https://lists.sourceforge.net/lists/listinfo/sqlmap-users > > -- Miroslav Stampar E-mail / Jabber: miroslav.stampar (at) gmail.com Mobile: +385921010204 (HR 0921010204) PGP Key ID: 0xB5397B1B Location: Zagreb, Croatia |
|
From: m4l1c3 <mal...@gm...> - 2011-02-02 20:48:24
|
./sqlmap.py -u "domain.tld/som.php?xxx=99999" --dump -D database -T this
Enumerates DB, Table, but fails to dump to csv.
[15:33:17] [CRITICAL] unhandled exception in sqlmap/0.9-dev, retry your run
with the latest development version from the Subversion repository. If the
exception persists, please send by e-mail to
sql...@li... the command line, the following text and
any information needed to reproduce the bug. The developers will try to
reproduce the bug, fix it accordingly and get back to you.
sqlmap version: 0.9-dev (r3139)
Python version: 2.5.2
Operating system: posix
Technique: ERROR
Back-end DBMS: MySQL
Traceback (most recent call last):
File "./sqlmap.py", line 83, in main
start()
File "/pentest/database/sqlmap-dev/lib/controller/controller.py", line
414, in start
action()
File "/pentest/database/sqlmap-dev/lib/controller/action.py", line 103, in
action
conf.dumper.dbTableValues(conf.dbmsHandler.dumpTable())
File "/pentest/database/sqlmap-dev/lib/core/dump.py", line 366, in
dbTableValues
self.__write("| %s%s" % (value, blank), n=False)
File "/pentest/database/sqlmap-dev/lib/core/dump.py", line 38, in __write
dataToStdout(text)
File "/pentest/database/sqlmap-dev/lib/core/common.py", line 590, in
dataToStdout
sys.stdout.write(data.encode(UNICODE_ENCODING, errors="replace"))
TypeError: encode() takes no keyword arguments
|
|
From: Miroslav S. <mir...@gm...> - 2011-02-02 21:35:26
|
hi.
you've reported this and we've fixed it 2 days ago :)
you are using r3139, fix was made in r3141, while current revision is r3186 :)))
kr
On Wed, Feb 2, 2011 at 9:48 PM, m4l1c3 <mal...@gm...> wrote:
> ./sqlmap.py -u "domain.tld/som.php?xxx=99999" --dump -D database -T this
>
> Enumerates DB, Table, but fails to dump to csv.
>
> [15:33:17] [CRITICAL] unhandled exception in sqlmap/0.9-dev, retry your run
> with the latest development version from the Subversion repository. If the
> exception persists, please send by e-mail to
> sql...@li... the command line, the following text and
> any information needed to reproduce the bug. The developers will try to
> reproduce the bug, fix it accordingly and get back to you.
> sqlmap version: 0.9-dev (r3139)
> Python version: 2.5.2
> Operating system: posix
> Technique: ERROR
> Back-end DBMS: MySQL
> Traceback (most recent call last):
> File "./sqlmap.py", line 83, in main
> start()
> File "/pentest/database/sqlmap-dev/lib/controller/controller.py", line
> 414, in start
> action()
> File "/pentest/database/sqlmap-dev/lib/controller/action.py", line 103, in
> action
> conf.dumper.dbTableValues(conf.dbmsHandler.dumpTable())
> File "/pentest/database/sqlmap-dev/lib/core/dump.py", line 366, in
> dbTableValues
> self.__write("| %s%s" % (value, blank), n=False)
> File "/pentest/database/sqlmap-dev/lib/core/dump.py", line 38, in __write
> dataToStdout(text)
> File "/pentest/database/sqlmap-dev/lib/core/common.py", line 590, in
> dataToStdout
> sys.stdout.write(data.encode(UNICODE_ENCODING, errors="replace"))
> TypeError: encode() takes no keyword arguments
>
>
> ------------------------------------------------------------------------------
> Special Offer-- Download ArcSight Logger for FREE (a $49 USD value)!
> Finally, a world-class log management solution at an even better price-free!
> Download using promo code Free_Logger_4_Dev2Dev. Offer expires
> February 28th, so secure your free ArcSight Logger TODAY!
> http://p.sf.net/sfu/arcsight-sfd2d
> _______________________________________________
> sqlmap-users mailing list
> sql...@li...
> https://lists.sourceforge.net/lists/listinfo/sqlmap-users
>
>
--
Miroslav Stampar
E-mail / Jabber: miroslav.stampar (at) gmail.com
Mobile: +385921010204 (HR 0921010204)
PGP Key ID: 0xB5397B1B
Location: Zagreb, Croatia
|
|
From: m4l1c3 <mal...@gm...> - 2011-03-18 16:15:45
|
sqlmap version: 0.9-dev (r3432)
Python version: 2.5.2
Operating system: posix
Command line: ./sqlmap.py -u
********************************************************* -o --batch
--columns -D SOME_DB -T TBL --timeout 2000
Technique: ERROR
Back-end DBMS: MySQL (fingerprinted)
Traceback (most recent call last):
File "./sqlmap.py", line 82, in main
start()
File "/pentest/database/sqlmap-dev/lib/controller/controller.py", line
424, in start
action()
File "/pentest/database/sqlmap-dev/lib/controller/action.py", line 97, in
action
conf.dumper.dbTableColumns(conf.dbmsHandler.getColumns())
File "/pentest/database/sqlmap-dev/lib/core/dump.py", line 201, in
dbTableColumns
colList.sort(key=lambda x: x.lower())
File "/pentest/database/sqlmap-dev/lib/core/dump.py", line 201, in
<lambda>
colList.sort(key=lambda x: x.lower())
AttributeError: 'NoneType' object has no attribute 'lower'
[*] shutting down at: 12:11:56
|
|
From: Miroslav S. <mir...@gm...> - 2011-03-18 16:54:24
|
hi m4l1c3. it's fixed in the latest commit but i believe that you maybe have problems with some other parts. it's quite strange that you get NULL column names. have you tried other switches? do plain switches like --banner work? kr On Fri, Mar 18, 2011 at 5:15 PM, m4l1c3 <mal...@gm...> wrote: > sqlmap version: 0.9-dev (r3432) > Python version: 2.5.2 > Operating system: posix > Command line: ./sqlmap.py -u > ********************************************************* -o --batch > --columns -D SOME_DB -T TBL --timeout 2000 > Technique: ERROR > Back-end DBMS: MySQL (fingerprinted) > Traceback (most recent call last): > File "./sqlmap.py", line 82, in main > start() > File "/pentest/database/sqlmap-dev/lib/controller/controller.py", line > 424, in start > action() > File "/pentest/database/sqlmap-dev/lib/controller/action.py", line 97, in > action > conf.dumper.dbTableColumns(conf.dbmsHandler.getColumns()) > File "/pentest/database/sqlmap-dev/lib/core/dump.py", line 201, in > dbTableColumns > colList.sort(key=lambda x: x.lower()) > File "/pentest/database/sqlmap-dev/lib/core/dump.py", line 201, in > <lambda> > colList.sort(key=lambda x: x.lower()) > AttributeError: 'NoneType' object has no attribute 'lower' > > [*] shutting down at: 12:11:56 > > > ------------------------------------------------------------------------------ > Colocation vs. Managed Hosting > A question and answer guide to determining the best fit > for your organization - today and in the future. > http://p.sf.net/sfu/internap-sfd2d > _______________________________________________ > sqlmap-users mailing list > sql...@li... > https://lists.sourceforge.net/lists/listinfo/sqlmap-users > > -- Miroslav Stampar E-mail: miroslav.stampar (at) gmail.com PGP Key ID: 0xB5397B1B |
|
From: m4l1c3 <mal...@gm...> - 2011-03-25 02:37:06
|
Python version: 2.5.2
Operating system: posix
Command line: ./sqlmap.py -u
********************************************************************************************************
--batch -o --tables -D ******************
Technique: UNION
Back-end DBMS: MySQL (fingerprinted)
Traceback (most recent call last):
File "./sqlmap.py", line 82, in main
start()
File "/pentest/database/sqlmap-dev/lib/controller/controller.py", line
424, in start
action()
File "/pentest/database/sqlmap-dev/lib/controller/action.py", line 91, in
action
conf.dumper.dbTables(conf.dbmsHandler.getTables())
File "/pentest/database/sqlmap-dev/plugins/generic/enumeration.py", line
827, in getTables
for db, table in value:
ValueError: too many values to unpack
--fingerprint is successful
--banner is successful
|
|
From: Miroslav S. <mir...@gm...> - 2011-03-25 10:29:49
|
hi m4l1c3. could you please post me the results of: -t traffic.txt --flush-session? it would be of great help. kr On Fri, Mar 25, 2011 at 3:37 AM, m4l1c3 <mal...@gm...> wrote: > Python version: 2.5.2 > Operating system: posix > Command line: ./sqlmap.py -u > ******************************************************************************************************** > --batch -o --tables -D ****************** > Technique: UNION > Back-end DBMS: MySQL (fingerprinted) > Traceback (most recent call last): > File "./sqlmap.py", line 82, in main > start() > File "/pentest/database/sqlmap-dev/lib/controller/controller.py", line > 424, in start > action() > File "/pentest/database/sqlmap-dev/lib/controller/action.py", line 91, in > action > conf.dumper.dbTables(conf.dbmsHandler.getTables()) > File "/pentest/database/sqlmap-dev/plugins/generic/enumeration.py", line > 827, in getTables > for db, table in value: > ValueError: too many values to unpack > > --fingerprint is successful > --banner is successful > > ------------------------------------------------------------------------------ > Enable your software for Intel(R) Active Management Technology to meet the > growing manageability and security demands of your customers. Businesses > are taking advantage of Intel(R) vPro (TM) technology - will your software > be a part of the solution? Download the Intel(R) Manageability Checker > today! http://p.sf.net/sfu/intel-dev2devmar > _______________________________________________ > sqlmap-users mailing list > sql...@li... > https://lists.sourceforge.net/lists/listinfo/sqlmap-users > > -- Miroslav Stampar E-mail: miroslav.stampar (at) gmail.com PGP Key ID: 0xB5397B1B |
|
From: m4l1c3 <mal...@gm...> - 2011-03-27 02:13:32
|
[22:01:34] [CRITICAL] unhandled exception in sqlmap/0.9-dev, retry your run
with the latest development version from the Subversion repository. If the
exception persists, please send by e-mail to
sql...@li... the following text and any information
required to reproduce the bug. The developers will try to reproduce the bug,
fix it accordingly and get back to you.
sqlmap version: 0.9-dev (r3498)
Python version: 2.5.2
Operating system: posix
Command line: ./sqlmap.py -g ******************* ext:aspx --batch -o --dump
-C *******
Technique: TIME
Back-end DBMS: Microsoft SQL Server (fingerprinted)
Traceback (most recent call last):
File "./sqlmap.py", line 82, in main
start()
File "/pentest/database/sqlmap-dev/lib/controller/controller.py", line
424, in start
action()
File "/pentest/database/sqlmap-dev/lib/controller/action.py", line 103, in
action
conf.dumper.dbTableValues(conf.dbmsHandler.dumpTable())
File "/pentest/database/sqlmap-dev/plugins/generic/enumeration.py", line
1237, in dumpTable
self.searchColumn()
File
"/pentest/database/sqlmap-dev/plugins/dbms/mssqlserver/enumeration.py", line
336, in searchColumn
dbs[db][tbl].update(kb.data.cachedColumns[db][tbl])
KeyError: u'dt_addtosourcecontrol'
|
|
From: Miroslav S. <mir...@gm...> - 2011-03-28 11:05:05
|
hi m4l1c3. thank you for this bug report and find it fixed in last commit (r3503). kr On Sun, Mar 27, 2011 at 4:13 AM, m4l1c3 <mal...@gm...> wrote: > > [22:01:34] [CRITICAL] unhandled exception in sqlmap/0.9-dev, retry your run > with the latest development version from the Subversion repository. If the > exception persists, please send by e-mail to > sql...@li... the following text and any information > required to reproduce the bug. The developers will try to reproduce the bug, > fix it accordingly and get back to you. > sqlmap version: 0.9-dev (r3498) > Python version: 2.5.2 > Operating system: posix > Command line: ./sqlmap.py -g ******************* ext:aspx --batch -o --dump > -C ******* > Technique: TIME > Back-end DBMS: Microsoft SQL Server (fingerprinted) > Traceback (most recent call last): > File "./sqlmap.py", line 82, in main > start() > File "/pentest/database/sqlmap-dev/lib/controller/controller.py", line > 424, in start > action() > File "/pentest/database/sqlmap-dev/lib/controller/action.py", line 103, in > action > conf.dumper.dbTableValues(conf.dbmsHandler.dumpTable()) > File "/pentest/database/sqlmap-dev/plugins/generic/enumeration.py", line > 1237, in dumpTable > self.searchColumn() > File > "/pentest/database/sqlmap-dev/plugins/dbms/mssqlserver/enumeration.py", line > 336, in searchColumn > dbs[db][tbl].update(kb.data.cachedColumns[db][tbl]) > KeyError: u'dt_addtosourcecontrol' > > > ------------------------------------------------------------------------------ > Enable your software for Intel(R) Active Management Technology to meet the > growing manageability and security demands of your customers. Businesses > are taking advantage of Intel(R) vPro (TM) technology - will your software > be a part of the solution? Download the Intel(R) Manageability Checker > today! http://p.sf.net/sfu/intel-dev2devmar > _______________________________________________ > sqlmap-users mailing list > sql...@li... > https://lists.sourceforge.net/lists/listinfo/sqlmap-users > > -- Miroslav Stampar E-mail: miroslav.stampar (at) gmail.com PGP Key ID: 0xB5397B1B |
|
From: Miroslav S. <mir...@gm...> - 2011-03-28 11:09:31
|
p.s. new with this last commit is the support for non-standard identificator naming in all 4 major DBMSes (MySQL, Oracle, PgSQL, MsSQL). sqlmap will automatically try to enclose those identificator names with proper markings: example: SELECT id FROM table-name --> SELECT id FROM `table-name` (MySQL) SELECT id FROM table name with space --> SELECT id FROM "table name with space" (MsSQL) On Mon, Mar 28, 2011 at 1:04 PM, Miroslav Stampar <mir...@gm...> wrote: > hi m4l1c3. > > thank you for this bug report and find it fixed in last commit (r3503). > > kr > > On Sun, Mar 27, 2011 at 4:13 AM, m4l1c3 <mal...@gm...> wrote: >> >> [22:01:34] [CRITICAL] unhandled exception in sqlmap/0.9-dev, retry your run >> with the latest development version from the Subversion repository. If the >> exception persists, please send by e-mail to >> sql...@li... the following text and any information >> required to reproduce the bug. The developers will try to reproduce the bug, >> fix it accordingly and get back to you. >> sqlmap version: 0.9-dev (r3498) >> Python version: 2.5.2 >> Operating system: posix >> Command line: ./sqlmap.py -g ******************* ext:aspx --batch -o --dump >> -C ******* >> Technique: TIME >> Back-end DBMS: Microsoft SQL Server (fingerprinted) >> Traceback (most recent call last): >> File "./sqlmap.py", line 82, in main >> start() >> File "/pentest/database/sqlmap-dev/lib/controller/controller.py", line >> 424, in start >> action() >> File "/pentest/database/sqlmap-dev/lib/controller/action.py", line 103, in >> action >> conf.dumper.dbTableValues(conf.dbmsHandler.dumpTable()) >> File "/pentest/database/sqlmap-dev/plugins/generic/enumeration.py", line >> 1237, in dumpTable >> self.searchColumn() >> File >> "/pentest/database/sqlmap-dev/plugins/dbms/mssqlserver/enumeration.py", line >> 336, in searchColumn >> dbs[db][tbl].update(kb.data.cachedColumns[db][tbl]) >> KeyError: u'dt_addtosourcecontrol' >> >> >> ------------------------------------------------------------------------------ >> Enable your software for Intel(R) Active Management Technology to meet the >> growing manageability and security demands of your customers. Businesses >> are taking advantage of Intel(R) vPro (TM) technology - will your software >> be a part of the solution? Download the Intel(R) Manageability Checker >> today! http://p.sf.net/sfu/intel-dev2devmar >> _______________________________________________ >> sqlmap-users mailing list >> sql...@li... >> https://lists.sourceforge.net/lists/listinfo/sqlmap-users >> >> > > > > -- > Miroslav Stampar > > E-mail: miroslav.stampar (at) gmail.com > PGP Key ID: 0xB5397B1B > -- Miroslav Stampar E-mail: miroslav.stampar (at) gmail.com PGP Key ID: 0xB5397B1B |
|
From: Kirill M. <l0...@l0...> - 2011-04-01 10:56:22
|
[14:47:15] [INFO] testing MySQL
[14:47:15] [INFO] confirming MySQL
[14:47:16] [INFO] the back-end DBMS is MySQL
[14:47:16] [INFO] fetching banner
web application technology: Apache 2.0.63, PHP 5.2.17
back-end DBMS: MySQL >= 5.0.0
[14:47:16] [INFO] fetching banner
banner: 'None'
[14:47:17] [INFO] fetching current user
current user: 'None'
[14:47:17] [INFO] fetching current database
current database: 'None'
[14:47:18] [INFO] testing if current user is DBA
[14:47:18] [INFO] fetching current user
[14:47:18] [CRITICAL] unhandled exception in sqlmap/0.9-dev, retry your run
with the latest development version from the Subversion repository. If the
exception persists, please send by e-mail to
sql...@li... the following text and any information
required to reproduce the bug. The developers will try to reproduce the bug,
fix it accordingly and get back to you.
sqlmap version: 0.9-dev (r3544)
Python version: 2.6.5
Operating system: posix
Command line: ./sqlmap.py -g *********************************** -c
sqlmap-lrd.conf --batch
Technique: UNION
Back-end DBMS: MySQL (fingerprinted)
Traceback (most recent call last):
File "./sqlmap.py", line 82, in main
start()
File "/root/sqlmap-dev/lib/controller/controller.py", line 442, in start
action()
File "/root/sqlmap-dev/lib/controller/action.py", line 70, in action
conf.dumper.dba(conf.dbmsHandler.isDba())
File "/root/sqlmap-dev/plugins/generic/enumeration.py", line 145, in isDba
query = queries[Backend.getIdentifiedDbms()].is_dba.query %
kb.data.currentUser.split("@")[0]
AttributeError: 'NoneType' object has no attribute 'split'
--
Kirill Morozov
KIMO2-RIPE, RHCE
|
|
From: Miroslav S. <mir...@gm...> - 2011-04-01 11:15:52
|
hi
quick fixed the crash part. but not sure why you are getting all those
'None(s)'. if you want to send some more info you can contact me
privately. have you tried to research the content of -t traffic.txt?
kr
On Fri, Apr 1, 2011 at 12:56 PM, Kirill Morozov <l0...@l0...> wrote:
> [14:47:15] [INFO] testing MySQL
> [14:47:15] [INFO] confirming MySQL
> [14:47:16] [INFO] the back-end DBMS is MySQL
> [14:47:16] [INFO] fetching banner
> web application technology: Apache 2.0.63, PHP 5.2.17
> back-end DBMS: MySQL >= 5.0.0
> [14:47:16] [INFO] fetching banner
> banner: 'None'
> [14:47:17] [INFO] fetching current user
> current user: 'None'
> [14:47:17] [INFO] fetching current database
> current database: 'None'
> [14:47:18] [INFO] testing if current user is DBA
> [14:47:18] [INFO] fetching current user
> [14:47:18] [CRITICAL] unhandled exception in sqlmap/0.9-dev, retry your run
> with the latest development version from the Subversion repository. If the
> exception persists, please send by e-mail to
> sql...@li... the following text and any information
> required to reproduce the bug. The developers will try to reproduce the bug,
> fix it accordingly and get back to you.
> sqlmap version: 0.9-dev (r3544)
> Python version: 2.6.5
> Operating system: posix
> Command line: ./sqlmap.py -g *********************************** -c
> sqlmap-lrd.conf --batch
> Technique: UNION
> Back-end DBMS: MySQL (fingerprinted)
> Traceback (most recent call last):
> File "./sqlmap.py", line 82, in main
> start()
> File "/root/sqlmap-dev/lib/controller/controller.py", line 442, in start
> action()
> File "/root/sqlmap-dev/lib/controller/action.py", line 70, in action
> conf.dumper.dba(conf.dbmsHandler.isDba())
> File "/root/sqlmap-dev/plugins/generic/enumeration.py", line 145, in isDba
> query = queries[Backend.getIdentifiedDbms()].is_dba.query %
> kb.data.currentUser.split("@")[0]
> AttributeError: 'NoneType' object has no attribute 'split'
>
> --
> Kirill Morozov
> KIMO2-RIPE, RHCE
>
>
>
> ------------------------------------------------------------------------------
> Create and publish websites with WebMatrix
> Use the most popular FREE web apps or write code yourself;
> WebMatrix provides all the features you need to develop and
> publish your website. http://p.sf.net/sfu/ms-webmatrix-sf
>
> _______________________________________________
> sqlmap-users mailing list
> sql...@li...
> https://lists.sourceforge.net/lists/listinfo/sqlmap-users
>
>
--
Miroslav Stampar
E-mail: miroslav.stampar (at) gmail.com
PGP Key ID: 0xB5397B1B
|
|
From: m4l1c3 <mal...@gm...> - 2011-04-03 12:33:29
|
sqlmap version: 0.9-dev (r3551)
Python version: 2.5.2
Operating system: posix
Command line: ./sqlmap.py -g ****************************** --dbs --batch -o
Technique: None
Back-end DBMS: None (identified)
Traceback (most recent call last):
File "./sqlmap.py", line 82, in main
start()
File "/pentest/database/sqlmap-dev/lib/controller/controller.py", line
273, in start
checkNullConnection()
File "/pentest/database/sqlmap-dev/lib/controller/checks.py", line 777, in
checkNullConnection
page, headers = Request.getPage(method=HTTPMETHOD.HEAD)
File "/pentest/database/sqlmap-dev/lib/request/connect.py", line 216, in
getPage
conn = urllib2.urlopen(req)
File "/usr/lib/python2.5/urllib2.py", line 124, in urlopen
return _opener.open(url, data)
File "/usr/lib/python2.5/urllib2.py", line 381, in open
response = self._open(req, data)
File "/usr/lib/python2.5/urllib2.py", line 399, in _open
'_open', req)
File "/usr/lib/python2.5/urllib2.py", line 360, in _call_chain
result = func(*args)
File "/pentest/database/sqlmap-dev/extra/keepalive/keepalive.py", line
210, in http_open
return self.do_open(HTTPConnection, req)
File "/pentest/database/sqlmap-dev/extra/keepalive/keepalive.py", line
181, in do_open
self._start_connection(h, req)
File "/pentest/database/sqlmap-dev/extra/keepalive/keepalive.py", line
140, in _start_connection
h.endheaders()
File "/pentest/database/sqlmap-dev/extra/keepalive/keepalive.py", line
342, in endheaders
self._send_output()
File "/usr/lib/python2.5/httplib.py", line 732, in _send_output
self.send(msg)
File "/usr/lib/python2.5/httplib.py", line 711, in send
self.sock.sendall(str)
File "<string>", line 1, in sendall
UnicodeEncodeError: 'ascii' codec can't encode characters in position 28-39:
ordinal not in range(128)
[*] shutting down at: 23:20:16
|
|
From: Miroslav S. <mir...@gm...> - 2011-04-03 15:06:55
|
hi m4l1c3. looking at your report together with previous ones related i've realized that this had to properly fixed. i believe that the last commit should solve this kind of problems, together with proper sending of localized data. please try with the latest commit (r3552) and report back if the problem persists. kr On Sun, Apr 3, 2011 at 2:33 PM, m4l1c3 <mal...@gm...> wrote: > sqlmap version: 0.9-dev (r3551) > Python version: 2.5.2 > Operating system: posix > Command line: ./sqlmap.py -g ****************************** --dbs --batch -o > Technique: None > Back-end DBMS: None (identified) > Traceback (most recent call last): > File "./sqlmap.py", line 82, in main > start() > File "/pentest/database/sqlmap-dev/lib/controller/controller.py", line > 273, in start > checkNullConnection() > File "/pentest/database/sqlmap-dev/lib/controller/checks.py", line 777, in > checkNullConnection > page, headers = Request.getPage(method=HTTPMETHOD.HEAD) > File "/pentest/database/sqlmap-dev/lib/request/connect.py", line 216, in > getPage > conn = urllib2.urlopen(req) > File "/usr/lib/python2.5/urllib2.py", line 124, in urlopen > return _opener.open(url, data) > File "/usr/lib/python2.5/urllib2.py", line 381, in open > response = self._open(req, data) > File "/usr/lib/python2.5/urllib2.py", line 399, in _open > '_open', req) > File "/usr/lib/python2.5/urllib2.py", line 360, in _call_chain > result = func(*args) > File "/pentest/database/sqlmap-dev/extra/keepalive/keepalive.py", line > 210, in http_open > return self.do_open(HTTPConnection, req) > File "/pentest/database/sqlmap-dev/extra/keepalive/keepalive.py", line > 181, in do_open > self._start_connection(h, req) > File "/pentest/database/sqlmap-dev/extra/keepalive/keepalive.py", line > 140, in _start_connection > h.endheaders() > File "/pentest/database/sqlmap-dev/extra/keepalive/keepalive.py", line > 342, in endheaders > self._send_output() > File "/usr/lib/python2.5/httplib.py", line 732, in _send_output > self.send(msg) > File "/usr/lib/python2.5/httplib.py", line 711, in send > self.sock.sendall(str) > File "<string>", line 1, in sendall > UnicodeEncodeError: 'ascii' codec can't encode characters in position 28-39: > ordinal not in range(128) > > [*] shutting down at: 23:20:16 > > > ------------------------------------------------------------------------------ > Create and publish websites with WebMatrix > Use the most popular FREE web apps or write code yourself; > WebMatrix provides all the features you need to develop and > publish your website. http://p.sf.net/sfu/ms-webmatrix-sf > > _______________________________________________ > sqlmap-users mailing list > sql...@li... > https://lists.sourceforge.net/lists/listinfo/sqlmap-users > > -- Miroslav Stampar E-mail: miroslav.stampar (at) gmail.com PGP Key ID: 0xB5397B1B |
|
From: m4l1c3 <mal...@gm...> - 2011-04-07 13:11:46
|
sqlmap version: 0.9-dev (r3577)
Python version: 2.5.2
Operating system: posix
Command line: ./sqlmap.py -g ****************** ext:aspx --dbs --batch -o
--text-only --level 3 --risk 2
Technique: UNION
Back-end DBMS: None (identified)
Traceback (most recent call last):
File "./sqlmap.py", line 82, in main
start()
File "/pentest/database/sqlmap-dev/lib/controller/controller.py", line
364, in start
elif not checkDynParam(place, parameter, value):
File "/pentest/database/sqlmap-dev/lib/controller/checks.py", line 582, in
checkDynParam
payload = agent.payload(place, parameter, value, getUnicode(randInt))
File "/pentest/database/sqlmap-dev/lib/core/agent.py", line 112, in
payload
retValue = paramString.replace(origValue,
self.addPayloadDelimiters(newValue))
AttributeError: 'NoneType' object has no attribute 'replace'
|
|
From: Miroslav S. <mir...@gm...> - 2011-04-07 13:56:17
|
hi m4l1c3. thank you for your report. find it fixed in the latest commit. kr On Thu, Apr 7, 2011 at 3:11 PM, m4l1c3 <mal...@gm...> wrote: > sqlmap version: 0.9-dev (r3577) > Python version: 2.5.2 > Operating system: posix > Command line: ./sqlmap.py -g ****************** ext:aspx --dbs --batch -o > --text-only --level 3 --risk 2 > Technique: UNION > Back-end DBMS: None (identified) > Traceback (most recent call last): > File "./sqlmap.py", line 82, in main > start() > File "/pentest/database/sqlmap-dev/lib/controller/controller.py", line > 364, in start > elif not checkDynParam(place, parameter, value): > File "/pentest/database/sqlmap-dev/lib/controller/checks.py", line 582, in > checkDynParam > payload = agent.payload(place, parameter, value, getUnicode(randInt)) > File "/pentest/database/sqlmap-dev/lib/core/agent.py", line 112, in > payload > retValue = paramString.replace(origValue, > self.addPayloadDelimiters(newValue)) > AttributeError: 'NoneType' object has no attribute 'replace' > > > ------------------------------------------------------------------------------ > Xperia(TM) PLAY > It's a major breakthrough. An authentic gaming > smartphone on the nation's most reliable network. > And it wants your games. > http://p.sf.net/sfu/verizon-sfdev > _______________________________________________ > sqlmap-users mailing list > sql...@li... > https://lists.sourceforge.net/lists/listinfo/sqlmap-users > > -- Miroslav Stampar E-mail: miroslav.stampar (at) gmail.com PGP Key ID: 0xB5397B1B |
|
From: m4l1c3 <mal...@gm...> - 2011-04-15 10:54:10
|
sqlmap version: 1.0-dev (r3674)
Python version: 2.5.2
Operating system: posix
Command line: ./sqlmap.py -u ***********************************************
--batch --dump -C *******
Technique: BOOLEAN
Back-end DBMS: Microsoft SQL Server (fingerprinted)
Traceback (most recent call last):
File "./sqlmap.py", line 83, in main
start()
File "/pentest/database/sqlmap-dev/lib/controller/controller.py", line
467, in start
action()
File "/pentest/database/sqlmap-dev/lib/controller/action.py", line 103, in
action
conf.dumper.dbTableValues(conf.dbmsHandler.dumpTable())
File "/pentest/database/sqlmap-dev/plugins/generic/enumeration.py", line
1238, in dumpTable
self.searchColumn()
File
"/pentest/database/sqlmap-dev/plugins/dbms/mssqlserver/enumeration.py", line
320, in searchColumn
query = query % (db, db, db, db, db, db)
TypeError: not all arguments converted during string formatting
|
|
From: Miroslav S. <mir...@gm...> - 2011-04-15 11:32:59
|
thank you for your report. find it fixed in latest revision. kr On Fri, Apr 15, 2011 at 12:54 PM, m4l1c3 <mal...@gm...> wrote: > sqlmap version: 1.0-dev (r3674) > Python version: 2.5.2 > Operating system: posix > Command line: ./sqlmap.py -u > *********************************************** --batch --dump -C ******* > Technique: BOOLEAN > Back-end DBMS: Microsoft SQL Server (fingerprinted) > Traceback (most recent call last): > File "./sqlmap.py", line 83, in main > start() > File "/pentest/database/sqlmap-dev/lib/controller/controller.py", line > 467, in start > action() > File "/pentest/database/sqlmap-dev/lib/controller/action.py", line 103, > in action > conf.dumper.dbTableValues(conf.dbmsHandler.dumpTable()) > File "/pentest/database/sqlmap-dev/plugins/generic/enumeration.py", line > 1238, in dumpTable > self.searchColumn() > File > "/pentest/database/sqlmap-dev/plugins/dbms/mssqlserver/enumeration.py", line > 320, in searchColumn > query = query % (db, db, db, db, db, db) > TypeError: not all arguments converted during string formatting > > > > > > ------------------------------------------------------------------------------ > Benefiting from Server Virtualization: Beyond Initial Workload > Consolidation -- Increasing the use of server virtualization is a top > priority.Virtualization can reduce costs, simplify management, and improve > application availability and disaster protection. Learn more about boosting > the value of server virtualization. http://p.sf.net/sfu/vmware-sfdev2dev > _______________________________________________ > sqlmap-users mailing list > sql...@li... > https://lists.sourceforge.net/lists/listinfo/sqlmap-users > > -- Miroslav Stampar E-mail: miroslav.stampar (at) gmail.com PGP Key ID: 0xB5397B1B |
|
From: m4l1c3 <mal...@gm...> - 2011-04-26 14:16:13
|
Target login page is like: Type a number into a field, a login appears. I
log in, and spider with burpsuite. 250mb log file (too much?)
sqlmap version: 1.0-dev (r3770)
Python version: 2.5.2
Operating system: posix
Command line: ./sqlmap.py -l /stough/log --batch --dbs
Technique: None
Back-end DBMS: None (identified)
Traceback (most recent call last):
File "./sqlmap.py", line 75, in main
init(cmdLineOptions)
File "/pentest/database/sqlmap-dev/lib/core/option.py", line 1600, in init
__setMultipleTargets()
File "/pentest/database/sqlmap-dev/lib/core/option.py", line 332, in
__setMultipleTargets
__feedTargetsDict(conf.list, addedTargetUrls)
File "/pentest/database/sqlmap-dev/lib/core/option.py", line 296, in
__feedTargetsDict
content = content.replace("\r", "")
MemoryError
|
|
From: Miroslav S. <mir...@gm...> - 2011-04-27 08:41:07
|
It's not that we expected such large log files, so everything is
loaded into memory and processed. We can adapt and read line by line,
problem will be solved for sure but it would slow down the processing
of the log files.
Will do something regarding later this week.
kr
On Tuesday, April 26, 2011, m4l1c3 <mal...@gm...> wrote:
> Target login page is like: Type a number into a field, a login appears. I log in, and spider with burpsuite. 250mb log file (too much?)
>
> sqlmap version: 1.0-dev (r3770)
> Python version: 2.5.2
> Operating system: posix
> Command line: ./sqlmap.py -l /stough/log --batch --dbs
> Technique: None
> Back-end DBMS: None (identified)
> Traceback (most recent call last):
> File "./sqlmap.py", line 75, in main
> init(cmdLineOptions)
> File "/pentest/database/sqlmap-dev/lib/core/option.py", line 1600, in init
> __setMultipleTargets()
> File "/pentest/database/sqlmap-dev/lib/core/option.py", line 332, in __setMultipleTargets
> __feedTargetsDict(conf.list, addedTargetUrls)
> File "/pentest/database/sqlmap-dev/lib/core/option.py", line 296, in __feedTargetsDict
> content = content.replace("\r", "")
> MemoryError
>
>
>
--
Miroslav Stampar
E-mail: miroslav.stampar (at) gmail.com
PGP Key ID: 0xB5397B1B
|
×
Want the latest updates on software, tech news, and AI?
Get latest updates about software, tech news, and AI from SourceForge directly in your inbox once a month.
Thanks for helping keep SourceForge clean.
X