Geek asks and answers

Set parameters using SQLMAP

I am involved in learning php and mysql. I have a built-in lab (VM) on my computer to test and find out how SQL injection works. When things get complicated, I use sqlmap to use, and then examining the queries he made for my test application using verbose mode and packet capture through wirehark. I ran into a small problem and to specify a parameter in the sqlmap url for testing.

http://localhost/vuln/test.php?feature=music&song=1

I want sqlmap to scan the song parameter , so I tried these solutions

-u http://localhost/vuln/test.php?feature=music&song=1 --skip feature
-u http://localhost/vuln/test.php? --data="feature=music&song=1" -p song

Tried various options, adding and removing quotation marks and equal characters not working. I even tried setting the maximum level --risk to a level, but it still cannot get the last parameter.

I would be very grateful if the expert can help me with this. Thank.

+5
source share
5 answers

parameter p can be used as follows

-u "http://localhost/vuln/test.php?feature=music&song=1" -p song

+11
source

I have this problem too. I think sqlmap introduces the first parameter. If you type:

-u http://localhost/vuln/test.php?feature=music&song=1

sqlmap will enter the "feature" parameter. To force it to enter the "song" parameter, you need to reorder the parameters as follows:

-u http://localhost/vuln/test.php?song=1&feature=music

Remember to add '&' between each parameter. It worked for me.

+2
source

* , . ?

+2

. "feature". , -u http://localhost/vuln/test.php? Feature = music & song = 1 --skip = feature, , , "song".

0

, , :

-u "http://localhost/vuln/test.php?feature=music&song=1" -p 'song,feature'

This scans the parameter song, then the parameter feature. If you sqlmapfind a vulnerable parameter, it will ask you if you want to continue working with others.

0
source

More articles:


All Articles