EvilZone
Hacking and Security => Beginner's Corner => : AnAnimal September 21, 2015, 12:04:05 PM
-
Hi All,
I have searched through web and also the forum however I haven't found any answer.
I am learning how to use SQLmap and I encountered such obstacle. Whenever I try to query site e.g. site.com/?firstparam=1&secondparam=2&...&lastparam=x
sqlmap returns something like [1] 8340 - random number here and then proceeds to check only the first parameter (normal scan goes here). I tried -p, skip x, also --method GET, but the result was nothing happened, I also got a notification that either --method and --data commands are not recognised (took them from manual so ::) )
Also, swapping parameters places with each other wouldn't help as the site I am dealing with seems to use the first parameter as an "Action" (like which subsite to use - news, gallery etc) and without it querying only the last one obviously treats it as non-injectable
I would be grateful for any advices how do you usually deal with multiple-parameters using SQLmap is it possible the sqlmap itself is kind of corrupted?
-
Lol you just need to put the whole argument between quotes, example:
sqlmap -u "your site.com/asdfasdf?asdfasdf?ASDfasdf=asdfasdfasdf"
-
Sometimes SQLMap bugs if the URL have more than one argument, like the example you used.
If is the case you can specify the parameter you want to test or skip the unwanted ones like the example:
sqlmap -u http://example/test.php?feature=music&song=1 --skip feature
sqlmap -u http://example/vuln/test.php? --data="feature=music&song=1" -p song
I think these examples are self explain :)
When I got this kind of error this syntax solved everything...
-
thank you guys, when I'm back home I'll check these tips and share the results in this post
//EDIT it works, thanks
@.goethe thanks too
-
use * to mark the vulnerable parameter. f.e.:
python sqlmap.py -u "http://www.vuln.com/page.php?id=1¶m=test&vuln=*