mirror of
https://github.com/sqlmapproject/sqlmap.git
synced 2024-12-01 22:13:53 +03:00
updated live tests
This commit is contained in:
parent
148767941b
commit
4975aafa65
|
@ -61,13 +61,13 @@
|
||||||
</switches>
|
</switches>
|
||||||
<parse>
|
<parse>
|
||||||
<item value="Title: AND boolean-based blind - WHERE or HAVING clause"/>
|
<item value="Title: AND boolean-based blind - WHERE or HAVING clause"/>
|
||||||
<item value="r'back-end DBMS: active fingerprint: MySQL >= 5.1.12 and < 5.5.0'"/>
|
<item value="r'back-end DBMS: active fingerprint: MySQL >= 5.5.0'"/>
|
||||||
<item value="banner: '5.1.66-0+squeeze1'"/>
|
<item value="banner: '5.5.33-0+wheezy1'"/>
|
||||||
<item value="current user: 'root@%'"/>
|
<item value="current user: 'root@localhost'"/>
|
||||||
<item value="current database: 'testdb'"/>
|
<item value="current database: 'testdb'"/>
|
||||||
<item value="hostname: 'debian"/>
|
<item value="hostname: 'debian"/>
|
||||||
<item value="current user is DBA: True"/>
|
<item value="current user is DBA: True"/>
|
||||||
<item value="r'database management system users \[.+'debian-sys-maint'@'localhost'.+'root'@''"/>
|
<item value="r'database management system users \[.+'debian-sys-maint'@'localhost'.+'root'@'"/>
|
||||||
<item value="r'database management system users password hashes:.+root \[.+password hash: \*00E247AC5F9AF26AE0194B41E1E769DEE1429A29.+clear-text password: testpass'"/>
|
<item value="r'database management system users password hashes:.+root \[.+password hash: \*00E247AC5F9AF26AE0194B41E1E769DEE1429A29.+clear-text password: testpass'"/>
|
||||||
<item value="r'database management system users privileges:.+debian-sys-maint.+\(administrator\).+root.+\(administrator\).+privilege: SUPER'"/>
|
<item value="r'database management system users privileges:.+debian-sys-maint.+\(administrator\).+root.+\(administrator\).+privilege: SUPER'"/>
|
||||||
<item value="r'database management system users roles:.+debian-sys-maint.+\(administrator\).+root.+\(administrator\).+role: SUPER'"/>
|
<item value="r'database management system users roles:.+debian-sys-maint.+\(administrator\).+root.+\(administrator\).+role: SUPER'"/>
|
||||||
|
@ -105,13 +105,13 @@
|
||||||
</switches>
|
</switches>
|
||||||
<parse>
|
<parse>
|
||||||
<item value="Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause"/>
|
<item value="Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause"/>
|
||||||
<item value="r'back-end DBMS: active fingerprint: MySQL >= 5.1.12 and < 5.5.0'"/>
|
<item value="r'back-end DBMS: active fingerprint: MySQL >= 5.5.0'"/>
|
||||||
<item value="banner: '5.1.66-0+squeeze1'"/>
|
<item value="banner: '5.5.33-0+wheezy1'"/>
|
||||||
<item value="current user: 'root@%'"/>
|
<item value="current user: 'root@localhost'"/>
|
||||||
<item value="current database: 'testdb'"/>
|
<item value="current database: 'testdb'"/>
|
||||||
<item value="hostname: 'debian"/>
|
<item value="hostname: 'debian"/>
|
||||||
<item value="current user is DBA: True"/>
|
<item value="current user is DBA: True"/>
|
||||||
<item value="r'database management system users \[.+'debian-sys-maint'@'localhost'.+'root'@''"/>
|
<item value="r'database management system users \[.+'debian-sys-maint'@'localhost'.+'root'@'"/>
|
||||||
<item value="r'database management system users password hashes:.+root \[.+password hash: \*00E247AC5F9AF26AE0194B41E1E769DEE1429A29'"/>
|
<item value="r'database management system users password hashes:.+root \[.+password hash: \*00E247AC5F9AF26AE0194B41E1E769DEE1429A29'"/>
|
||||||
<item value="r'database management system users privileges:.+debian-sys-maint.+\(administrator\).+root.+\(administrator\).+privilege: SUPER'"/>
|
<item value="r'database management system users privileges:.+debian-sys-maint.+\(administrator\).+root.+\(administrator\).+privilege: SUPER'"/>
|
||||||
<item value="r'database management system users roles:.+debian-sys-maint.+\(administrator\).+root.+\(administrator\).+role: SUPER'"/>
|
<item value="r'database management system users roles:.+debian-sys-maint.+\(administrator\).+root.+\(administrator\).+role: SUPER'"/>
|
||||||
|
@ -149,13 +149,13 @@
|
||||||
</switches>
|
</switches>
|
||||||
<parse>
|
<parse>
|
||||||
<item value="Title: MySQL UNION query (NULL) - 3 columns"/>
|
<item value="Title: MySQL UNION query (NULL) - 3 columns"/>
|
||||||
<item value="r'back-end DBMS: active fingerprint: MySQL >= 5.1.12 and < 5.5.0'"/>
|
<item value="r'back-end DBMS: active fingerprint: MySQL >= 5.5.0'"/>
|
||||||
<item value="banner: '5.1.66-0+squeeze1'"/>
|
<item value="banner: '5.5.33-0+wheezy1'"/>
|
||||||
<item value="current user: 'root@%'"/>
|
<item value="current user: 'root@localhost'"/>
|
||||||
<item value="current database: 'testdb'"/>
|
<item value="current database: 'testdb'"/>
|
||||||
<item value="hostname: 'debian"/>
|
<item value="hostname: 'debian"/>
|
||||||
<item value="current user is DBA: True"/>
|
<item value="current user is DBA: True"/>
|
||||||
<item value="r'database management system users \[.+'debian-sys-maint'@'localhost'.+'root'@''"/>
|
<item value="r'database management system users \[.+'debian-sys-maint'@'localhost'.+'root'@'"/>
|
||||||
<item value="r'database management system users password hashes:.+root \[.+password hash: \*00E247AC5F9AF26AE0194B41E1E769DEE1429A29'"/>
|
<item value="r'database management system users password hashes:.+root \[.+password hash: \*00E247AC5F9AF26AE0194B41E1E769DEE1429A29'"/>
|
||||||
<item value="r'database management system users privileges:.+debian-sys-maint.+\(administrator\).+root.+\(administrator\).+privilege: SUPER'"/>
|
<item value="r'database management system users privileges:.+debian-sys-maint.+\(administrator\).+root.+\(administrator\).+privilege: SUPER'"/>
|
||||||
<item value="r'database management system users roles:.+debian-sys-maint.+\(administrator\).+root.+\(administrator\).+role: SUPER'"/>
|
<item value="r'database management system users roles:.+debian-sys-maint.+\(administrator\).+root.+\(administrator\).+role: SUPER'"/>
|
||||||
|
@ -193,13 +193,13 @@
|
||||||
</switches>
|
</switches>
|
||||||
<parse>
|
<parse>
|
||||||
<item value="Title: MySQL UNION query (NULL) - 3 columns"/>
|
<item value="Title: MySQL UNION query (NULL) - 3 columns"/>
|
||||||
<item value="r'back-end DBMS: active fingerprint: MySQL >= 5.1.12 and < 5.5.0'"/>
|
<item value="r'back-end DBMS: active fingerprint: MySQL >= 5.5.0'"/>
|
||||||
<item value="banner: '5.1.66-0+squeeze1'"/>
|
<item value="banner: '5.5.33-0+wheezy1'"/>
|
||||||
<item value="current user: 'root@%'"/>
|
<item value="current user: 'root@localhost'"/>
|
||||||
<item value="current database: 'testdb'"/>
|
<item value="current database: 'testdb'"/>
|
||||||
<item value="hostname: 'debian"/>
|
<item value="hostname: 'debian"/>
|
||||||
<item value="current user is DBA: True"/>
|
<item value="current user is DBA: True"/>
|
||||||
<item value="r'database management system users \[.+'debian-sys-maint'@'localhost'.+'root'@''"/>
|
<item value="r'database management system users \[.+'debian-sys-maint'@'localhost'.+'root'@'"/>
|
||||||
<item value="r'database management system users password hashes:.+root \[.+password hash: \*00E247AC5F9AF26AE0194B41E1E769DEE1429A29'"/>
|
<item value="r'database management system users password hashes:.+root \[.+password hash: \*00E247AC5F9AF26AE0194B41E1E769DEE1429A29'"/>
|
||||||
<item value="r'database management system users privileges:.+debian-sys-maint.+\(administrator\).+root.+\(administrator\).+privilege: SUPER'"/>
|
<item value="r'database management system users privileges:.+debian-sys-maint.+\(administrator\).+root.+\(administrator\).+privilege: SUPER'"/>
|
||||||
<item value="r'database management system users roles:.+debian-sys-maint.+\(administrator\).+root.+\(administrator\).+role: SUPER'"/>
|
<item value="r'database management system users roles:.+debian-sys-maint.+\(administrator\).+root.+\(administrator\).+role: SUPER'"/>
|
||||||
|
@ -220,7 +220,7 @@
|
||||||
</switches>
|
</switches>
|
||||||
<parse>
|
<parse>
|
||||||
<item value="Title: MySQL > 5.0.11 AND time-based blind"/>
|
<item value="Title: MySQL > 5.0.11 AND time-based blind"/>
|
||||||
<item value="banner: '5.1.66-0+squeeze1'"/>
|
<item value="banner: '5.5.33-0+wheezy1'"/>
|
||||||
<item value="current user is DBA: True"/>
|
<item value="current user is DBA: True"/>
|
||||||
</parse>
|
</parse>
|
||||||
</case>
|
</case>
|
||||||
|
@ -251,13 +251,13 @@
|
||||||
</switches>
|
</switches>
|
||||||
<parse>
|
<parse>
|
||||||
<item value="Title: MySQL inline queries"/>
|
<item value="Title: MySQL inline queries"/>
|
||||||
<item value="r'back-end DBMS: active fingerprint: MySQL >= 5.1.12 and < 5.5.0'"/>
|
<item value="r'back-end DBMS: active fingerprint: MySQL >= 5.5.0'"/>
|
||||||
<item value="banner: '5.1.66-0+squeeze1'"/>
|
<item value="banner: '5.5.33-0+wheezy1'"/>
|
||||||
<item value="current user: 'root@%'"/>
|
<item value="current user: 'root@localhost'"/>
|
||||||
<item value="current database: 'testdb'"/>
|
<item value="current database: 'testdb'"/>
|
||||||
<item value="hostname: 'debian"/>
|
<item value="hostname: 'debian"/>
|
||||||
<item value="current user is DBA: True"/>
|
<item value="current user is DBA: True"/>
|
||||||
<item value="r'database management system users \[.+'debian-sys-maint'@'localhost'.+'root'@''"/>
|
<item value="r'database management system users \[.+'debian-sys-maint'@'localhost'.+'root'@'"/>
|
||||||
<item value="r'database management system users password hashes:.+root \[.+password hash: \*00E247AC5F9AF26AE0194B41E1E769DEE1429A29'"/>
|
<item value="r'database management system users password hashes:.+root \[.+password hash: \*00E247AC5F9AF26AE0194B41E1E769DEE1429A29'"/>
|
||||||
<item value="r'database management system users privileges:.+debian-sys-maint.+\(administrator\).+root.+\(administrator\).+privilege: SUPER'"/>
|
<item value="r'database management system users privileges:.+debian-sys-maint.+\(administrator\).+root.+\(administrator\).+privilege: SUPER'"/>
|
||||||
<item value="r'database management system users roles:.+debian-sys-maint.+\(administrator\).+root.+\(administrator\).+role: SUPER'"/>
|
<item value="r'database management system users roles:.+debian-sys-maint.+\(administrator\).+root.+\(administrator\).+role: SUPER'"/>
|
||||||
|
@ -295,15 +295,15 @@
|
||||||
<parse>
|
<parse>
|
||||||
<item value="Title: AND boolean-based blind - WHERE or HAVING clause"/>
|
<item value="Title: AND boolean-based blind - WHERE or HAVING clause"/>
|
||||||
<item value="r'back-end DBMS: active fingerprint: PostgreSQL >= 8.4.0 and < 9.0.0'"/>
|
<item value="r'back-end DBMS: active fingerprint: PostgreSQL >= 8.4.0 and < 9.0.0'"/>
|
||||||
<item value="banner: 'PostgreSQL 8.4.17 on i486-pc-linux-gnu, compiled by GCC gcc-4.4.real (Debian 4.4.5-8) 4.4.5, 32-bit'"/>
|
<item value="banner: 'PostgreSQL 9.1.11 on i686-pc-linux-gnu, compiled by gcc (Debian 4.7.2-5) 4.7.2, 32-bit'"/>
|
||||||
<item value="current user: 'postgres'"/>
|
<item value="current user: 'postgres'"/>
|
||||||
<item value="current database: 'testdb'"/>
|
<item value="current schema (equivalent to database on PostgreSQL): 'public'"/>
|
||||||
<item value="current user is DBA: True"/>
|
<item value="current user is DBA: True"/>
|
||||||
<item value="r'database management system users \[.+postgres'"/>
|
<item value="r'database management system users \[.+postgres'"/>
|
||||||
<item value="r'database management system users password hashes:.+postgres \[.+password hash: md5d7d880f96044b72d0bba108ace96d1e4.+clear-text password: testpass'"/>
|
<item value="r'database management system users password hashes:.+postgres \[.+password hash: md5d7d880f96044b72d0bba108ace96d1e4.+clear-text password: testpass'"/>
|
||||||
<item value="r'database management system users privileges:.+postgres.+\(administrator\).+privilege: super'"/>
|
<item value="r'database management system users privileges:.+postgres.+\(administrator\).+privilege: super'"/>
|
||||||
<item value="r'database management system users roles:.+postgres.+\(administrator\).+role: super'"/>
|
<item value="r'database management system users roles:.+postgres.+\(administrator\).+role: super'"/>
|
||||||
<item value="r'available databases \[.+template0.+template1.+testdb'"/>
|
<item value="r'available databases \[.+information_schema.+pg_catalog'"/>
|
||||||
<item value="r'Database: public.+1 table.+users'"/>
|
<item value="r'Database: public.+1 table.+users'"/>
|
||||||
<item value="r'Database: public.+Table: users.+3 columns.+id.+int4.+surname.+bpchar'"/>
|
<item value="r'Database: public.+Table: users.+3 columns.+id.+int4.+surname.+bpchar'"/>
|
||||||
<item value="r'Database: public.+Table.+Entries.+users.+5'"/>
|
<item value="r'Database: public.+Table.+Entries.+users.+5'"/>
|
||||||
|
@ -338,15 +338,15 @@
|
||||||
<parse>
|
<parse>
|
||||||
<item value="Title: PostgreSQL AND error-based - WHERE or HAVING clause"/>
|
<item value="Title: PostgreSQL AND error-based - WHERE or HAVING clause"/>
|
||||||
<item value="r'back-end DBMS: active fingerprint: PostgreSQL >= 8.4.0 and < 9.0.0'"/>
|
<item value="r'back-end DBMS: active fingerprint: PostgreSQL >= 8.4.0 and < 9.0.0'"/>
|
||||||
<item value="banner: 'PostgreSQL 8.4.17 on i486-pc-linux-gnu, compiled by GCC gcc-4.4.real (Debian 4.4.5-8) 4.4.5, 32-bit'"/>
|
<item value="banner: 'PostgreSQL 9.1.11 on i686-pc-linux-gnu, compiled by gcc (Debian 4.7.2-5) 4.7.2, 32-bit'"/>
|
||||||
<item value="current user: 'postgres'"/>
|
<item value="current user: 'postgres'"/>
|
||||||
<item value="current database: 'testdb'"/>
|
<item value="current schema (equivalent to database on PostgreSQL): 'public'"/>
|
||||||
<item value="current user is DBA: True"/>
|
<item value="current user is DBA: True"/>
|
||||||
<item value="r'database management system users \[.+postgres'"/>
|
<item value="r'database management system users \[.+postgres'"/>
|
||||||
<item value="r'database management system users password hashes:.+postgres \[.+password hash: md5d7d880f96044b72d0bba108ace96d1e4'"/>
|
<item value="r'database management system users password hashes:.+postgres \[.+password hash: md5d7d880f96044b72d0bba108ace96d1e4'"/>
|
||||||
<item value="r'database management system users privileges:.+postgres.+\(administrator\).+privilege: super'"/>
|
<item value="r'database management system users privileges:.+postgres.+\(administrator\).+privilege: super'"/>
|
||||||
<item value="r'database management system users roles:.+postgres.+\(administrator\).+role: super'"/>
|
<item value="r'database management system users roles:.+postgres.+\(administrator\).+role: super'"/>
|
||||||
<item value="r'available databases \[.+template0.+template1.+testdb'"/>
|
<item value="r'available databases \[.+information_schema.+pg_catalog'"/>
|
||||||
<item value="r'Database: public.+1 table.+users'"/>
|
<item value="r'Database: public.+1 table.+users'"/>
|
||||||
<item value="r'Database: public.+Table: users.+3 columns.+id.+int4.+surname.+bpchar'"/>
|
<item value="r'Database: public.+Table: users.+3 columns.+id.+int4.+surname.+bpchar'"/>
|
||||||
<item value="r'Database: public.+Table.+Entries.+users.+5'"/>
|
<item value="r'Database: public.+Table.+Entries.+users.+5'"/>
|
||||||
|
@ -381,15 +381,15 @@
|
||||||
<parse>
|
<parse>
|
||||||
<item value="Title: Generic UNION query (NULL) - 3 columns"/>
|
<item value="Title: Generic UNION query (NULL) - 3 columns"/>
|
||||||
<item value="r'back-end DBMS: active fingerprint: PostgreSQL >= 8.4.0 and < 9.0.0'"/>
|
<item value="r'back-end DBMS: active fingerprint: PostgreSQL >= 8.4.0 and < 9.0.0'"/>
|
||||||
<item value="banner: 'PostgreSQL 8.4.17 on i486-pc-linux-gnu, compiled by GCC gcc-4.4.real (Debian 4.4.5-8) 4.4.5, 32-bit'"/>
|
<item value="banner: 'PostgreSQL 9.1.11 on i686-pc-linux-gnu, compiled by gcc (Debian 4.7.2-5) 4.7.2, 32-bit'"/>
|
||||||
<item value="current user: 'postgres'"/>
|
<item value="current user: 'postgres'"/>
|
||||||
<item value="current database: 'testdb'"/>
|
<item value="current schema (equivalent to database on PostgreSQL): 'public'"/>
|
||||||
<item value="current user is DBA: True"/>
|
<item value="current user is DBA: True"/>
|
||||||
<item value="r'database management system users \[.+postgres'"/>
|
<item value="r'database management system users \[.+postgres'"/>
|
||||||
<item value="r'database management system users password hashes:.+postgres \[.+password hash: md5d7d880f96044b72d0bba108ace96d1e4'"/>
|
<item value="r'database management system users password hashes:.+postgres \[.+password hash: md5d7d880f96044b72d0bba108ace96d1e4'"/>
|
||||||
<item value="r'database management system users privileges:.+postgres.+\(administrator\).+privilege: super'"/>
|
<item value="r'database management system users privileges:.+postgres.+\(administrator\).+privilege: super'"/>
|
||||||
<item value="r'database management system users roles:.+postgres.+\(administrator\).+role: super'"/>
|
<item value="r'database management system users roles:.+postgres.+\(administrator\).+role: super'"/>
|
||||||
<item value="r'available databases \[.+template0.+template1.+testdb'"/>
|
<item value="r'available databases \[.+information_schema.+pg_catalog'"/>
|
||||||
<item value="r'Database: public.+1 table.+users'"/>
|
<item value="r'Database: public.+1 table.+users'"/>
|
||||||
<item value="r'Database: public.+Table: users.+3 columns.+id.+int4.+surname.+bpchar'"/>
|
<item value="r'Database: public.+Table: users.+3 columns.+id.+int4.+surname.+bpchar'"/>
|
||||||
<item value="r'Database: public.+Table.+Entries.+users.+5'"/>
|
<item value="r'Database: public.+Table.+Entries.+users.+5'"/>
|
||||||
|
@ -424,15 +424,15 @@
|
||||||
<parse>
|
<parse>
|
||||||
<item value="Title: Generic UNION query (NULL) - 3 columns"/>
|
<item value="Title: Generic UNION query (NULL) - 3 columns"/>
|
||||||
<item value="r'back-end DBMS: active fingerprint: PostgreSQL >= 8.4.0 and < 9.0.0'"/>
|
<item value="r'back-end DBMS: active fingerprint: PostgreSQL >= 8.4.0 and < 9.0.0'"/>
|
||||||
<item value="banner: 'PostgreSQL 8.4.17 on i486-pc-linux-gnu, compiled by GCC gcc-4.4.real (Debian 4.4.5-8) 4.4.5, 32-bit'"/>
|
<item value="banner: 'PostgreSQL 9.1.11 on i686-pc-linux-gnu, compiled by gcc (Debian 4.7.2-5) 4.7.2, 32-bit'"/>
|
||||||
<item value="current user: 'postgres'"/>
|
<item value="current user: 'postgres'"/>
|
||||||
<item value="current database: 'testdb'"/>
|
<item value="current schema (equivalent to database on PostgreSQL): 'public'"/>
|
||||||
<item value="current user is DBA: True"/>
|
<item value="current user is DBA: True"/>
|
||||||
<item value="r'database management system users \[.+postgres'"/>
|
<item value="r'database management system users \[.+postgres'"/>
|
||||||
<item value="r'database management system users password hashes:.+postgres \[.+password hash: md5d7d880f96044b72d0bba108ace96d1e4'"/>
|
<item value="r'database management system users password hashes:.+postgres \[.+password hash: md5d7d880f96044b72d0bba108ace96d1e4'"/>
|
||||||
<item value="r'database management system users privileges:.+postgres.+\(administrator\).+privilege: super'"/>
|
<item value="r'database management system users privileges:.+postgres.+\(administrator\).+privilege: super'"/>
|
||||||
<item value="r'database management system users roles:.+postgres.+\(administrator\).+role: super'"/>
|
<item value="r'database management system users roles:.+postgres.+\(administrator\).+role: super'"/>
|
||||||
<item value="r'available databases \[.+template0.+template1.+testdb'"/>
|
<item value="r'available databases \[.+information_schema.+pg_catalog'"/>
|
||||||
<item value="r'Database: public.+1 table.+users'"/>
|
<item value="r'Database: public.+1 table.+users'"/>
|
||||||
<item value="r'Database: public.+Table: users.+3 columns.+id.+int4.+surname.+bpchar'"/>
|
<item value="r'Database: public.+Table: users.+3 columns.+id.+int4.+surname.+bpchar'"/>
|
||||||
<item value="r'Database: public.+Table.+Entries.+users.+5'"/>
|
<item value="r'Database: public.+Table.+Entries.+users.+5'"/>
|
||||||
|
@ -449,7 +449,7 @@
|
||||||
</switches>
|
</switches>
|
||||||
<parse>
|
<parse>
|
||||||
<item value="Title: PostgreSQL > 8.1 AND time-based blind"/>
|
<item value="Title: PostgreSQL > 8.1 AND time-based blind"/>
|
||||||
<item value="banner: 'PostgreSQL 8.4.17 on i486-pc-linux-gnu, compiled by GCC gcc-4.4.real (Debian 4.4.5-8) 4.4.5, 32-bit'"/>
|
<item value="banner: 'PostgreSQL 9.1.11 on i686-pc-linux-gnu, compiled by gcc (Debian 4.7.2-5) 4.7.2, 32-bit'"/>
|
||||||
<item value="current user is DBA: True"/>
|
<item value="current user is DBA: True"/>
|
||||||
</parse>
|
</parse>
|
||||||
</case>
|
</case>
|
||||||
|
@ -463,7 +463,7 @@
|
||||||
</switches>
|
</switches>
|
||||||
<parse>
|
<parse>
|
||||||
<item value="Title: PostgreSQL > 8.1 stacked queries"/>
|
<item value="Title: PostgreSQL > 8.1 stacked queries"/>
|
||||||
<item value="banner: 'PostgreSQL 8.4.17 on i486-pc-linux-gnu, compiled by GCC gcc-4.4.real (Debian 4.4.5-8) 4.4.5, 32-bit'"/>
|
<item value="banner: 'PostgreSQL 9.1.11 on i686-pc-linux-gnu, compiled by gcc (Debian 4.7.2-5) 4.7.2, 32-bit'"/>
|
||||||
<item value="current user is DBA: True"/>
|
<item value="current user is DBA: True"/>
|
||||||
</parse>
|
</parse>
|
||||||
</case>
|
</case>
|
||||||
|
@ -495,15 +495,15 @@
|
||||||
<parse>
|
<parse>
|
||||||
<item value="Title: PostgreSQL inline queries"/>
|
<item value="Title: PostgreSQL inline queries"/>
|
||||||
<item value="r'back-end DBMS: active fingerprint: PostgreSQL >= 8.4.0 and < 9.0.0'"/>
|
<item value="r'back-end DBMS: active fingerprint: PostgreSQL >= 8.4.0 and < 9.0.0'"/>
|
||||||
<item value="banner: 'PostgreSQL 8.4.17 on i486-pc-linux-gnu, compiled by GCC gcc-4.4.real (Debian 4.4.5-8) 4.4.5, 32-bit'"/>
|
<item value="banner: 'PostgreSQL 9.1.11 on i686-pc-linux-gnu, compiled by gcc (Debian 4.7.2-5) 4.7.2, 32-bit'"/>
|
||||||
<item value="current user: 'postgres'"/>
|
<item value="current user: 'postgres'"/>
|
||||||
<item value="current database: 'testdb'"/>
|
<item value="current schema (equivalent to database on PostgreSQL): 'public'"/>
|
||||||
<item value="current user is DBA: True"/>
|
<item value="current user is DBA: True"/>
|
||||||
<item value="r'database management system users \[.+postgres'"/>
|
<item value="r'database management system users \[.+postgres'"/>
|
||||||
<item value="r'database management system users password hashes:.+postgres \[.+password hash: md5d7d880f96044b72d0bba108ace96d1e4'"/>
|
<item value="r'database management system users password hashes:.+postgres \[.+password hash: md5d7d880f96044b72d0bba108ace96d1e4'"/>
|
||||||
<item value="r'database management system users privileges:.+postgres.+\(administrator\).+privilege: super'"/>
|
<item value="r'database management system users privileges:.+postgres.+\(administrator\).+privilege: super'"/>
|
||||||
<item value="r'database management system users roles:.+postgres.+\(administrator\).+role: super'"/>
|
<item value="r'database management system users roles:.+postgres.+\(administrator\).+role: super'"/>
|
||||||
<item value="r'available databases \[.+template0.+template1.+testdb'"/>
|
<item value="r'available databases \[.+information_schema.+pg_catalog'"/>
|
||||||
<item value="r'Database: public.+1 table.+users'"/>
|
<item value="r'Database: public.+1 table.+users'"/>
|
||||||
<item value="r'Database: public.+Table: users.+3 columns.+id.+int4.+surname.+bpchar'"/>
|
<item value="r'Database: public.+Table: users.+3 columns.+id.+int4.+surname.+bpchar'"/>
|
||||||
<item value="r'Database: public.+Table.+Entries.+users.+5'"/>
|
<item value="r'Database: public.+Table.+Entries.+users.+5'"/>
|
||||||
|
@ -3303,7 +3303,7 @@
|
||||||
</switches>
|
</switches>
|
||||||
<parse>
|
<parse>
|
||||||
<item value="Title: OR boolean-based blind - WHERE or HAVING clause"/>
|
<item value="Title: OR boolean-based blind - WHERE or HAVING clause"/>
|
||||||
<item value="banner: '5.1.66-0+squeeze1'"/>
|
<item value="banner: '5.5.33-0+wheezy1'"/>
|
||||||
<item value="current user is DBA: True"/>
|
<item value="current user is DBA: True"/>
|
||||||
</parse>
|
</parse>
|
||||||
</case>
|
</case>
|
||||||
|
@ -3339,7 +3339,7 @@
|
||||||
<tbl value="international"/>
|
<tbl value="international"/>
|
||||||
</switches>
|
</switches>
|
||||||
<parse>
|
<parse>
|
||||||
<item value="banner: '5.1.66-0+squeeze1'"/>
|
<item value="banner: '5.5.33-0+wheezy1'"/>
|
||||||
<item value="r'Database: testdb.+Table: international.+3 entries.+šućuraj.+长江.+река Москва'"/>
|
<item value="r'Database: testdb.+Table: international.+3 entries.+šućuraj.+长江.+река Москва'"/>
|
||||||
</parse>
|
</parse>
|
||||||
</case>
|
</case>
|
||||||
|
@ -3397,7 +3397,7 @@
|
||||||
<parse>
|
<parse>
|
||||||
<item value="Title: MySQL UNION query (NULL) - 3 columns"/>
|
<item value="Title: MySQL UNION query (NULL) - 3 columns"/>
|
||||||
<item value="r'Payload: id=[\d]+\.[\d]+ UNION'"/>
|
<item value="r'Payload: id=[\d]+\.[\d]+ UNION'"/>
|
||||||
<item value="banner: '5.1.66-0+squeeze1'"/>
|
<item value="banner: '5.5.33-0+wheezy1'"/>
|
||||||
<item value="current user is DBA: True"/>
|
<item value="current user is DBA: True"/>
|
||||||
</parse>
|
</parse>
|
||||||
</case>
|
</case>
|
||||||
|
@ -3412,7 +3412,7 @@
|
||||||
<parse>
|
<parse>
|
||||||
<item value="Title: MySQL UNION query (NULL) - 3 columns"/>
|
<item value="Title: MySQL UNION query (NULL) - 3 columns"/>
|
||||||
<item value="r'Payload: id=1 AND [\d]+=[\d]+ UNION'"/>
|
<item value="r'Payload: id=1 AND [\d]+=[\d]+ UNION'"/>
|
||||||
<item value="banner: '5.1.66-0+squeeze1'"/>
|
<item value="banner: '5.5.33-0+wheezy1'"/>
|
||||||
<item value="current user is DBA: True"/>
|
<item value="current user is DBA: True"/>
|
||||||
</parse>
|
</parse>
|
||||||
</case>
|
</case>
|
||||||
|
@ -3428,7 +3428,7 @@
|
||||||
<getBanner value="True"/>
|
<getBanner value="True"/>
|
||||||
</switches>
|
</switches>
|
||||||
<parse>
|
<parse>
|
||||||
<item value="banner: '5.1.66-0+squeeze1'"/>
|
<item value="banner: '5.5.33-0+wheezy1'"/>
|
||||||
</parse>
|
</parse>
|
||||||
</case>
|
</case>
|
||||||
<case name="HTTP digest authentication">
|
<case name="HTTP digest authentication">
|
||||||
|
@ -3440,7 +3440,7 @@
|
||||||
<getBanner value="True"/>
|
<getBanner value="True"/>
|
||||||
</switches>
|
</switches>
|
||||||
<parse>
|
<parse>
|
||||||
<item value="banner: '5.1.66-0+squeeze1'"/>
|
<item value="banner: '5.5.33-0+wheezy1'"/>
|
||||||
</parse>
|
</parse>
|
||||||
</case>
|
</case>
|
||||||
<case name="Boolean-based predict output enumeration">
|
<case name="Boolean-based predict output enumeration">
|
||||||
|
@ -3452,7 +3452,7 @@
|
||||||
<getBanner value="True"/>
|
<getBanner value="True"/>
|
||||||
</switches>
|
</switches>
|
||||||
<parse>
|
<parse>
|
||||||
<item value="banner: '5.1.66-0+squeeze1'"/>
|
<item value="banner: '5.5.33-0+wheezy1'"/>
|
||||||
<item value="r'performed 112 queries'" console_output="True"/>
|
<item value="r'performed 112 queries'" console_output="True"/>
|
||||||
</parse>
|
</parse>
|
||||||
</case>
|
</case>
|
||||||
|
@ -3466,7 +3466,7 @@
|
||||||
<getBanner value="True"/>
|
<getBanner value="True"/>
|
||||||
</switches>
|
</switches>
|
||||||
<parse>
|
<parse>
|
||||||
<item value="banner: '5.1.66-0+squeeze1'"/>
|
<item value="banner: '5.5.33-0+wheezy1'"/>
|
||||||
<item value="r'performed 112 queries'" console_output="True"/>
|
<item value="r'performed 112 queries'" console_output="True"/>
|
||||||
</parse>
|
</parse>
|
||||||
</case>
|
</case>
|
||||||
|
@ -3479,7 +3479,7 @@
|
||||||
<getBanner value="True"/>
|
<getBanner value="True"/>
|
||||||
</switches>
|
</switches>
|
||||||
<parse>
|
<parse>
|
||||||
<item value="banner: '5.1.66-0+squeeze1'"/>
|
<item value="banner: '5.5.33-0+wheezy1'"/>
|
||||||
<item value="r'performed 126 queries'" console_output="True"/>
|
<item value="r'performed 126 queries'" console_output="True"/>
|
||||||
</parse>
|
</parse>
|
||||||
</case>
|
</case>
|
||||||
|
@ -3511,13 +3511,13 @@
|
||||||
</switches>
|
</switches>
|
||||||
<parse>
|
<parse>
|
||||||
<item value="Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause"/>
|
<item value="Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause"/>
|
||||||
<item value="r'back-end DBMS: active fingerprint: MySQL >= 5.1.12 and < 5.5.0'"/>
|
<item value="r'back-end DBMS: active fingerprint: MySQL >= 5.5.0'"/>
|
||||||
<item value="banner: '5.1.66-0+squeeze1'"/>
|
<item value="banner: '5.5.33-0+wheezy1'"/>
|
||||||
<item value="current user: 'root@%'"/>
|
<item value="current user: 'root@localhost'"/>
|
||||||
<item value="current database: 'testdb'"/>
|
<item value="current database: 'testdb'"/>
|
||||||
<item value="hostname: 'debian"/>
|
<item value="hostname: 'debian"/>
|
||||||
<item value="current user is DBA: True"/>
|
<item value="current user is DBA: True"/>
|
||||||
<item value="r'database management system users \[.+'debian-sys-maint'@'localhost'.+'root'@''"/>
|
<item value="r'database management system users \[.+'debian-sys-maint'@'localhost'.+'root'@'"/>
|
||||||
<item value="r'database management system users password hashes:.+root \[.+password hash: \*00E247AC5F9AF26AE0194B41E1E769DEE1429A29'"/>
|
<item value="r'database management system users password hashes:.+root \[.+password hash: \*00E247AC5F9AF26AE0194B41E1E769DEE1429A29'"/>
|
||||||
<item value="r'database management system users privileges:.+debian-sys-maint.+\(administrator\).+root.+\(administrator\).+privilege: SUPER'"/>
|
<item value="r'database management system users privileges:.+debian-sys-maint.+\(administrator\).+root.+\(administrator\).+privilege: SUPER'"/>
|
||||||
<item value="r'database management system users roles:.+debian-sys-maint.+\(administrator\).+root.+\(administrator\).+role: SUPER'"/>
|
<item value="r'database management system users roles:.+debian-sys-maint.+\(administrator\).+root.+\(administrator\).+role: SUPER'"/>
|
||||||
|
@ -3536,7 +3536,7 @@
|
||||||
<getBanner value="True"/>
|
<getBanner value="True"/>
|
||||||
</switches>
|
</switches>
|
||||||
<parse>
|
<parse>
|
||||||
<item value="banner: '5.1.66-0+squeeze1'"/>
|
<item value="banner: '5.5.33-0+wheezy1'"/>
|
||||||
</parse>
|
</parse>
|
||||||
</case>
|
</case>
|
||||||
<case name="Custom POST data injection mark">
|
<case name="Custom POST data injection mark">
|
||||||
|
@ -3548,7 +3548,7 @@
|
||||||
<getBanner value="True"/>
|
<getBanner value="True"/>
|
||||||
</switches>
|
</switches>
|
||||||
<parse>
|
<parse>
|
||||||
<item value="banner: '5.1.66-0+squeeze1'"/>
|
<item value="banner: '5.5.33-0+wheezy1'"/>
|
||||||
</parse>
|
</parse>
|
||||||
</case>
|
</case>
|
||||||
<case name="Custom HTTP header (UA) injection mark">
|
<case name="Custom HTTP header (UA) injection mark">
|
||||||
|
@ -3560,7 +3560,7 @@
|
||||||
<getBanner value="True"/>
|
<getBanner value="True"/>
|
||||||
</switches>
|
</switches>
|
||||||
<parse>
|
<parse>
|
||||||
<item value="banner: '5.1.66-0+squeeze1'"/>
|
<item value="banner: '5.5.33-0+wheezy1'"/>
|
||||||
</parse>
|
</parse>
|
||||||
</case>
|
</case>
|
||||||
<case name="Custom FROM table in UNION query">
|
<case name="Custom FROM table in UNION query">
|
||||||
|
@ -3573,7 +3573,7 @@
|
||||||
</switches>
|
</switches>
|
||||||
<parse>
|
<parse>
|
||||||
<item value="r'VERSION\(\).+FROM INFORMATION_SCHEMA\.COLLATIONS'" console_output="True"/>
|
<item value="r'VERSION\(\).+FROM INFORMATION_SCHEMA\.COLLATIONS'" console_output="True"/>
|
||||||
<item value="banner: '5.1.66-0+squeeze1'"/>
|
<item value="banner: '5.5.33-0+wheezy1'"/>
|
||||||
</parse>
|
</parse>
|
||||||
</case>
|
</case>
|
||||||
<case name="Estimated time of arrival">
|
<case name="Estimated time of arrival">
|
||||||
|
@ -3585,7 +3585,7 @@
|
||||||
<getBanner value="True"/>
|
<getBanner value="True"/>
|
||||||
</switches>
|
</switches>
|
||||||
<parse>
|
<parse>
|
||||||
<item value="banner: '5.1.66-0+squeeze1'"/>
|
<item value="banner: '5.5.33-0+wheezy1'"/>
|
||||||
<item value="r'100\% \[===.+=\] 17\/17'" console_output="True"/>
|
<item value="r'100\% \[===.+=\] 17\/17'" console_output="True"/>
|
||||||
</parse>
|
</parse>
|
||||||
</case>
|
</case>
|
||||||
|
@ -3597,7 +3597,7 @@
|
||||||
<answers value="Do you want to keep testing the others=Y"/>
|
<answers value="Do you want to keep testing the others=Y"/>
|
||||||
</switches>
|
</switches>
|
||||||
<parse>
|
<parse>
|
||||||
<item value="banner: '5.1.66-0+squeeze1'"/>
|
<item value="banner: '5.5.33-0+wheezy1'"/>
|
||||||
<item value="testing for SQL injection on GET parameter 'pAram'" console_output="True"/>
|
<item value="testing for SQL injection on GET parameter 'pAram'" console_output="True"/>
|
||||||
<item value="testing for SQL injection on GET parameter 's'" console_output="True"/>
|
<item value="testing for SQL injection on GET parameter 's'" console_output="True"/>
|
||||||
<item value="testing for SQL injection on GET parameter 'id'" console_output="True"/>
|
<item value="testing for SQL injection on GET parameter 'id'" console_output="True"/>
|
||||||
|
|
Loading…
Reference in New Issue
Block a user