help on specifying the vulnerable param

Automatic SQL Injection Exploitation Tool

Brought to you by: mfontanini, san-lt-ss

help on specifying the vulnerable param

Forum: General Discussion

Creator: midiway

Created: 2012-02-21

Updated: 2014-07-16

midiway - 2012-02-21

Hi, sorry if it is not the appropriated place to ask for help

As far as I could see, the vulnerable param MUST be like 'www.example.com/?myVulnerableParam=XYZ', there must be a question mark (?) and an equal sign delimiting the paramenter name and its value (dont know how to call this form of URL parametization)

But what if I have an vulnerable URL like 'www.example.com/XYZ' where XYZ is beeing directly used in a SQL query, so it is the vulnerable param value, there isnt a name for it. Is there a command I can use to specify this kind of vulnerable URL?

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Doc Daven - 2014-07-16

Hi - I noticed your website was gone. Is this no longer being supported/authored?

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Matias Fontanini - 2014-07-16

The website is active:

http://themole.sourceforge.net/

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Log in to post a comment.