mirror of
https://github.com/sqlmapproject/sqlmap.git
synced 2024-11-26 11:33:47 +03:00
added SQLite test cases (issue #312)
This commit is contained in:
Bernardo Damele
parent
413b5e7ab4
commit
8a2b994b94
|
|
@ -10,6 +10,7 @@
|
||||||
<flushSession value="True"/>
|
<flushSession value="True"/>
|
||||||
<disableColoring value="True"/>
|
<disableColoring value="True"/>
|
||||||
<verbose value="1"/>
|
<verbose value="1"/>
|
||||||
|
<cleanup value="1"/>
|
||||||
</global>
|
</global>
|
||||||
<!-- Common enumeration switches across all techniques -->
|
<!-- Common enumeration switches across all techniques -->
|
||||||
<case name="MySQL boolean-based multi-threaded enumeration - all entries">
|
<case name="MySQL boolean-based multi-threaded enumeration - all entries">
|
||||||
|
|
@ -473,6 +474,150 @@
|
||||||
<item value="r'Database: public.+Table: users.+5 entries.+luther.+nameisnull.+'"/>
|
<item value="r'Database: public.+Table: users.+5 entries.+luther.+nameisnull.+'"/>
|
||||||
</parse>
|
</parse>
|
||||||
</case>
|
</case>
|
||||||
|
<case name="SQLite boolean-based multi-threaded enumeration - all entries">
|
||||||
|
<switches>
|
||||||
|
<url value="http://debiandev/sqlmap/sqlite/get_int.php?id=1"/>
|
||||||
|
<threads value="4"/>
|
||||||
|
<tech value="B"/>
|
||||||
|
<extensiveFp value="True"/>
|
||||||
|
<getBanner value="True"/>
|
||||||
|
<getCurrentUser value="True"/>
|
||||||
|
<getCurrentDb value="True"/>
|
||||||
|
<getHostname value="True"/>
|
||||||
|
<isDba value="True"/>
|
||||||
|
<getUsers value="True"/>
|
||||||
|
<getPasswordHashes value="True"/>
|
||||||
|
<getPrivileges value="True"/>
|
||||||
|
<getRoles value="True"/>
|
||||||
|
<getDbs value="True"/>
|
||||||
|
<getTables value="True"/>
|
||||||
|
<getColumns value="True"/>
|
||||||
|
<getCount value="True"/>
|
||||||
|
<dumpTable value="True"/>
|
||||||
|
<db value="testdb"/>
|
||||||
|
<tbl value="users"/>
|
||||||
|
<excludeSysDbs value="True"/>
|
||||||
|
</switches>
|
||||||
|
<parse>
|
||||||
|
<item value="Title: AND boolean-based blind - WHERE or HAVING clause"/>
|
||||||
|
<item value="r'back-end DBMS: active fingerprint: SQLite 2'"/>
|
||||||
|
<item value="banner: '2.8.17'"/>
|
||||||
|
<item value="r'Database: SQLite_masterdb.+1 table.+users'"/>
|
||||||
|
<item value="r'Database: SQLite_masterdb.+Table: users.+3 columns.+surname.+TEXT'"/>
|
||||||
|
<item value="r'Database: SQLite_masterdb.+Table: users.+5 entries.+luther.+nameisnull.+'"/>
|
||||||
|
</parse>
|
||||||
|
</case>
|
||||||
|
<case name="SQLite UNION query multi-threaded enumeration - all entries">
|
||||||
|
<switches>
|
||||||
|
<url value="http://debiandev/sqlmap/sqlite/get_int.php?id=1"/>
|
||||||
|
<threads value="4"/>
|
||||||
|
<tech value="U"/>
|
||||||
|
<extensiveFp value="True"/>
|
||||||
|
<getBanner value="True"/>
|
||||||
|
<getCurrentUser value="True"/>
|
||||||
|
<getCurrentDb value="True"/>
|
||||||
|
<getHostname value="True"/>
|
||||||
|
<isDba value="True"/>
|
||||||
|
<getUsers value="True"/>
|
||||||
|
<getPasswordHashes value="True"/>
|
||||||
|
<getPrivileges value="True"/>
|
||||||
|
<getRoles value="True"/>
|
||||||
|
<getDbs value="True"/>
|
||||||
|
<getTables value="True"/>
|
||||||
|
<getColumns value="True"/>
|
||||||
|
<getCount value="True"/>
|
||||||
|
<dumpTable value="True"/>
|
||||||
|
<db value="testdb"/>
|
||||||
|
<tbl value="users"/>
|
||||||
|
<excludeSysDbs value="True"/>
|
||||||
|
</switches>
|
||||||
|
<parse>
|
||||||
|
<item value="Title: Generic UNION query (NULL) - 3 columns"/>
|
||||||
|
<item value="r'back-end DBMS: active fingerprint: SQLite 2'"/>
|
||||||
|
<item value="banner: '2.8.17'"/>
|
||||||
|
<item value="r'Database: SQLite_masterdb.+1 table.+users'"/>
|
||||||
|
<item value="r'Database: SQLite_masterdb.+Table: users.+3 columns.+surname.+TEXT'"/>
|
||||||
|
<item value="r'Database: SQLite_masterdb.+Table: users.+4 entries.+luther.+user agent.+'"/>
|
||||||
|
</parse>
|
||||||
|
</case>
|
||||||
|
<case name="SQLite partial UNION query multi-threaded enumeration - all entries">
|
||||||
|
<switches>
|
||||||
|
<url value="http://debiandev/sqlmap/sqlite/get_int_partialunion.php?id=1"/>
|
||||||
|
<threads value="4"/>
|
||||||
|
<tech value="U"/>
|
||||||
|
<extensiveFp value="True"/>
|
||||||
|
<getBanner value="True"/>
|
||||||
|
<getCurrentUser value="True"/>
|
||||||
|
<getCurrentDb value="True"/>
|
||||||
|
<getHostname value="True"/>
|
||||||
|
<isDba value="True"/>
|
||||||
|
<getUsers value="True"/>
|
||||||
|
<getPasswordHashes value="True"/>
|
||||||
|
<getPrivileges value="True"/>
|
||||||
|
<getRoles value="True"/>
|
||||||
|
<getDbs value="True"/>
|
||||||
|
<getTables value="True"/>
|
||||||
|
<getColumns value="True"/>
|
||||||
|
<getCount value="True"/>
|
||||||
|
<dumpTable value="True"/>
|
||||||
|
<db value="testdb"/>
|
||||||
|
<tbl value="users"/>
|
||||||
|
</switches>
|
||||||
|
<parse>
|
||||||
|
<item value="Title: Generic UNION query (NULL) - 3 columns"/>
|
||||||
|
<item value="r'back-end DBMS: active fingerprint: SQLite 2'"/>
|
||||||
|
<item value="banner: '2.8.17'"/>
|
||||||
|
<item value="r'Database: SQLite_masterdb.+1 table.+users'"/>
|
||||||
|
<item value="r'Database: SQLite_masterdb.+Table: users.+3 columns.+surname.+TEXT'"/>
|
||||||
|
<item value="r'Database: SQLite_masterdb.+Table: users.+4 entries.+luther.+user agent.+'"/>
|
||||||
|
</parse>
|
||||||
|
</case>
|
||||||
|
<case name="SQLite 3 time-based single-threaded enumeration - all entries">
|
||||||
|
<switches>
|
||||||
|
<url value="http://debiandev/sqlmap/sqlite/get_int_3_nooutput.php?id=1"/>
|
||||||
|
<tech value="T"/>
|
||||||
|
<level value="3"/>
|
||||||
|
<risk value="2"/>
|
||||||
|
<timeSec value="2"/>
|
||||||
|
<getBanner value="True"/>
|
||||||
|
</switches>
|
||||||
|
<parse>
|
||||||
|
<item value="Title: SQLite > 2.0 AND time-based blind (heavy query)"/>
|
||||||
|
<item value="banner: '3.7.3'"/>
|
||||||
|
</parse>
|
||||||
|
</case>
|
||||||
|
<case name="SQLite inline queries multi-threaded enumeration - all entries">
|
||||||
|
<switches>
|
||||||
|
<url value="http://debiandev/sqlmap/sqlite/get_int_inline.php?id=1"/>
|
||||||
|
<threads value="4"/>
|
||||||
|
<tech value="Q"/>
|
||||||
|
<extensiveFp value="True"/>
|
||||||
|
<getBanner value="True"/>
|
||||||
|
<getCurrentUser value="True"/>
|
||||||
|
<getCurrentDb value="True"/>
|
||||||
|
<getHostname value="True"/>
|
||||||
|
<isDba value="True"/>
|
||||||
|
<getUsers value="True"/>
|
||||||
|
<getPasswordHashes value="True"/>
|
||||||
|
<getPrivileges value="True"/>
|
||||||
|
<getRoles value="True"/>
|
||||||
|
<getDbs value="True"/>
|
||||||
|
<getTables value="True"/>
|
||||||
|
<getColumns value="True"/>
|
||||||
|
<getCount value="True"/>
|
||||||
|
<dumpTable value="True"/>
|
||||||
|
<db value="testdb"/>
|
||||||
|
<tbl value="users"/>
|
||||||
|
</switches>
|
||||||
|
<parse>
|
||||||
|
<item value="Title: SQLite inline queries"/>
|
||||||
|
<item value="r'back-end DBMS: active fingerprint: SQLite 2'"/>
|
||||||
|
<item value="banner: '2.8.17'"/>
|
||||||
|
<item value="r'Database: SQLite_masterdb.+1 table.+users'"/>
|
||||||
|
<item value="r'Database: SQLite_masterdb.+Table: users.+3 columns.+surname.+TEXT'"/>
|
||||||
|
<item value="r'Database: SQLite_masterdb.+Table: users.+5 entries.+luther.+nameisnull.+'"/>
|
||||||
|
</parse>
|
||||||
|
</case>
|
||||||
<!-- End of common enumeration switches across all techniques -->
|
<!-- End of common enumeration switches across all techniques -->
|
||||||
|
|
||||||
<!-- Custom enumeration switches -->
|
<!-- Custom enumeration switches -->
|
||||||
|
|
@ -578,6 +723,39 @@
|
||||||
<item value="r'Database: public.+Table: users.+5 entries.+the | iss.+<blank> | mei'"/>
|
<item value="r'Database: public.+Table: users.+5 entries.+the | iss.+<blank> | mei'"/>
|
||||||
</parse>
|
</parse>
|
||||||
</case>
|
</case>
|
||||||
|
<case name="SQLite UNION query multi-threaded custom enumeration">
|
||||||
|
<switches>
|
||||||
|
<url value="http://debiandev/sqlmap/sqlite/get_int.php?id=1"/>
|
||||||
|
<threads value="4"/>
|
||||||
|
<tech value="U"/>
|
||||||
|
<getSchema value="True"/>
|
||||||
|
<dumpTable value="True"/>
|
||||||
|
<db value="testdb"/>
|
||||||
|
<tbl value="users"/>
|
||||||
|
<limitStart value="2"/>
|
||||||
|
<limitStop value="4"/>
|
||||||
|
<excludeSysDbs value="True"/>
|
||||||
|
</switches>
|
||||||
|
<parse>
|
||||||
|
<item value="r'Database: SQLite_masterdb.+Table: users.+3 columns.+surname.+TEXT'"/>
|
||||||
|
<item value="r'Database: SQLite_masterdb.+Table: users.+3 entries.+fluffy.+bunny.+wu.+ming'"/>
|
||||||
|
</parse>
|
||||||
|
</case>
|
||||||
|
<case name="SQLite boolean-based multi-threaded custom enumeration - substring">
|
||||||
|
<switches>
|
||||||
|
<url value="http://debiandev/sqlmap/sqlite/get_int.php?id=1"/>
|
||||||
|
<threads value="4"/>
|
||||||
|
<tech value="B"/>
|
||||||
|
<dumpTable value="True"/>
|
||||||
|
<db value="testdb"/>
|
||||||
|
<tbl value="users"/>
|
||||||
|
<firstChar value="3"/>
|
||||||
|
<lastChar value="5"/>
|
||||||
|
</switches>
|
||||||
|
<parse>
|
||||||
|
<item value="r'Database: SQLite_masterdb.+Table: users.+5 entries.+the | iss.+<blank> | mei'"/>
|
||||||
|
</parse>
|
||||||
|
</case>
|
||||||
<!-- End of custom enumeration switches -->
|
<!-- End of custom enumeration switches -->
|
||||||
|
|
||||||
<!-- Search enumeration switches -->
|
<!-- Search enumeration switches -->
|
||||||
|
|
@ -1172,6 +1350,43 @@
|
||||||
<item value="r'Database: information_schema.+Table: sql_parts.+1 column.+feature_name.+character_data'"/>
|
<item value="r'Database: information_schema.+Table: sql_parts.+1 column.+feature_name.+character_data'"/>
|
||||||
</parse>
|
</parse>
|
||||||
</case>
|
</case>
|
||||||
|
<case name="SQLite multi-threaded search enumeration - database">
|
||||||
|
<switches>
|
||||||
|
<url value="http://debiandev/sqlmap/sqlite/get_int.php?id=1"/>
|
||||||
|
<threads value="4"/>
|
||||||
|
<search value="True"/>
|
||||||
|
<db value="e"/>
|
||||||
|
</switches>
|
||||||
|
<parse>
|
||||||
|
<item value="on SQLite it is not possible to search databases" console_output="True"/>
|
||||||
|
</parse>
|
||||||
|
</case>
|
||||||
|
<case name="SQLite boolean-based multi-threaded search enumeration - tables without given database">
|
||||||
|
<switches>
|
||||||
|
<url value="http://debiandev/sqlmap/sqlite/get_int.php?id=1"/>
|
||||||
|
<threads value="4"/>
|
||||||
|
<tech value="B"/>
|
||||||
|
<search value="True"/>
|
||||||
|
<tbl value="user"/>
|
||||||
|
<answers value="do you want to dump=N"/>
|
||||||
|
</switches>
|
||||||
|
<parse>
|
||||||
|
<item value="r'Database: SQLite_masterdb.+1 table.+users'"/>
|
||||||
|
</parse>
|
||||||
|
</case>
|
||||||
|
<case name="SQLite UNION query multi-threaded search enumeration - tables without given database">
|
||||||
|
<switches>
|
||||||
|
<url value="http://debiandev/sqlmap/sqlite/get_int.php?id=1"/>
|
||||||
|
<threads value="4"/>
|
||||||
|
<tech value="U"/>
|
||||||
|
<search value="True"/>
|
||||||
|
<tbl value="user"/>
|
||||||
|
<answers value="do you want to dump=N"/>
|
||||||
|
</switches>
|
||||||
|
<parse>
|
||||||
|
<item value="r'Database: SQLite_masterdb.+1 table.+users'"/>
|
||||||
|
</parse>
|
||||||
|
</case>
|
||||||
<!-- End of search enumeration switches -->
|
<!-- End of search enumeration switches -->
|
||||||
|
|
||||||
<!-- User's provided statement enumeration switches -->
|
<!-- User's provided statement enumeration switches -->
|
||||||
|
|
@ -1183,7 +1398,7 @@
|
||||||
<query value="SELECT * FROM users LIMIT 0, 2"/>
|
<query value="SELECT * FROM users LIMIT 0, 2"/>
|
||||||
</switches>
|
</switches>
|
||||||
<parse>
|
<parse>
|
||||||
<item value="r'SELECT \* FROM users LIMIT 0, 2 \[2\].+1, luther, blissett.+2, fluffy, bunny'"/>
|
<item value="r'SELECT \* FROM users LIMIT 0, 2 \[2\].+1, luther, blisset.+2, fluffy, bunny'"/>
|
||||||
</parse>
|
</parse>
|
||||||
</case>
|
</case>
|
||||||
<case name="MySQL error-based multi-threaded custom SQL query enumeration">
|
<case name="MySQL error-based multi-threaded custom SQL query enumeration">
|
||||||
|
|
@ -1194,7 +1409,7 @@
|
||||||
<query value="SELECT * FROM users LIMIT 0, 2"/>
|
<query value="SELECT * FROM users LIMIT 0, 2"/>
|
||||||
</switches>
|
</switches>
|
||||||
<parse>
|
<parse>
|
||||||
<item value="r'SELECT \* FROM users LIMIT 0, 2 \[2\].+1, luther, blissett.+2, fluffy, bunny'"/>
|
<item value="r'SELECT \* FROM users LIMIT 0, 2 \[2\].+1, luther, blisset.+2, fluffy, bunny'"/>
|
||||||
</parse>
|
</parse>
|
||||||
</case>
|
</case>
|
||||||
<case name="MySQL UNION query multi-threaded custom SQL query enumeration">
|
<case name="MySQL UNION query multi-threaded custom SQL query enumeration">
|
||||||
|
|
@ -1205,7 +1420,7 @@
|
||||||
<query value="SELECT * FROM users LIMIT 0, 2"/>
|
<query value="SELECT * FROM users LIMIT 0, 2"/>
|
||||||
</switches>
|
</switches>
|
||||||
<parse>
|
<parse>
|
||||||
<item value="r'SELECT \* FROM users LIMIT 0, 2 \[2\].+1, luther, blissett.+2, fluffy, bunny'"/>
|
<item value="r'SELECT \* FROM users LIMIT 0, 2 \[2\].+1, luther, blisset.+2, fluffy, bunny'"/>
|
||||||
</parse>
|
</parse>
|
||||||
</case>
|
</case>
|
||||||
<case name="MySQL boolean-based multi-threaded custom ordered SQL query enumeration">
|
<case name="MySQL boolean-based multi-threaded custom ordered SQL query enumeration">
|
||||||
|
|
@ -1216,7 +1431,7 @@
|
||||||
<query value="SELECT * FROM users ORDER BY name"/>
|
<query value="SELECT * FROM users ORDER BY name"/>
|
||||||
</switches>
|
</switches>
|
||||||
<parse>
|
<parse>
|
||||||
<item value="r'SELECT \* FROM users ORDER BY name \[5\].+2, fluffy, bunny.+1, luther, blissett.+3, wu, ming'"/>
|
<item value="r'SELECT \* FROM users ORDER BY name \[5\].+2, fluffy, bunny.+1, luther, blisset.+3, wu, ming'"/>
|
||||||
</parse>
|
</parse>
|
||||||
</case>
|
</case>
|
||||||
<case name="MySQL error-based multi-threaded custom ordered SQL query enumeration">
|
<case name="MySQL error-based multi-threaded custom ordered SQL query enumeration">
|
||||||
|
|
@ -1227,7 +1442,7 @@
|
||||||
<query value="SELECT * FROM users ORDER BY name"/>
|
<query value="SELECT * FROM users ORDER BY name"/>
|
||||||
</switches>
|
</switches>
|
||||||
<parse>
|
<parse>
|
||||||
<item value="r'SELECT \* FROM users ORDER BY name \[5\].+2, fluffy, bunny.+1, luther, blissett.+3, wu, ming'"/>
|
<item value="r'SELECT \* FROM users ORDER BY name \[5\].+2, fluffy, bunny.+1, luther, blisset.+3, wu, ming'"/>
|
||||||
</parse>
|
</parse>
|
||||||
</case>
|
</case>
|
||||||
<case name="MySQL UNION query multi-threaded custom ordered SQL query enumeration">
|
<case name="MySQL UNION query multi-threaded custom ordered SQL query enumeration">
|
||||||
|
|
@ -1239,7 +1454,7 @@
|
||||||
</switches>
|
</switches>
|
||||||
<parse>
|
<parse>
|
||||||
<!-- NOTE: it is not sorted on purpose because UNION does not play well with ORDER BY and it is stripped -->
|
<!-- NOTE: it is not sorted on purpose because UNION does not play well with ORDER BY and it is stripped -->
|
||||||
<item value="r'SELECT \* FROM users ORDER BY name \[5\].+1, luther, blissett.+2, fluffy, bunny.+3, wu, ming'"/>
|
<item value="r'SELECT \* FROM users ORDER BY name \[5\].+1, luther, blisset.+2, fluffy, bunny.+3, wu, ming'"/>
|
||||||
</parse>
|
</parse>
|
||||||
</case>
|
</case>
|
||||||
<case name="PostgreSQL boolean-based multi-threaded custom SQL query enumeration">
|
<case name="PostgreSQL boolean-based multi-threaded custom SQL query enumeration">
|
||||||
|
|
@ -1250,7 +1465,7 @@
|
||||||
<query value="SELECT * FROM users OFFSET 0 LIMIT 2"/>
|
<query value="SELECT * FROM users OFFSET 0 LIMIT 2"/>
|
||||||
</switches>
|
</switches>
|
||||||
<parse>
|
<parse>
|
||||||
<item value="r'SELECT \* FROM users OFFSET 0 LIMIT 2 \[2\].+1, luther, blissett.+2, fluffy, bunny'"/>
|
<item value="r'SELECT \* FROM users OFFSET 0 LIMIT 2 \[2\].+1, luther, blisset.+2, fluffy, bunny'"/>
|
||||||
</parse>
|
</parse>
|
||||||
</case>
|
</case>
|
||||||
<case name="PostgreSQL error-based multi-threaded custom SQL query enumeration">
|
<case name="PostgreSQL error-based multi-threaded custom SQL query enumeration">
|
||||||
|
|
@ -1261,7 +1476,7 @@
|
||||||
<query value="SELECT * FROM users OFFSET 0 LIMIT 2"/>
|
<query value="SELECT * FROM users OFFSET 0 LIMIT 2"/>
|
||||||
</switches>
|
</switches>
|
||||||
<parse>
|
<parse>
|
||||||
<item value="r'SELECT \* FROM users OFFSET 0 LIMIT 2 \[2\].+1, luther, blissett.+2, fluffy, bunny'"/>
|
<item value="r'SELECT \* FROM users OFFSET 0 LIMIT 2 \[2\].+1, luther, blisset.+2, fluffy, bunny'"/>
|
||||||
</parse>
|
</parse>
|
||||||
</case>
|
</case>
|
||||||
<case name="PostgreSQL UNION query multi-threaded custom SQL query enumeration">
|
<case name="PostgreSQL UNION query multi-threaded custom SQL query enumeration">
|
||||||
|
|
@ -1272,7 +1487,7 @@
|
||||||
<query value="SELECT * FROM users OFFSET 0 LIMIT 2"/>
|
<query value="SELECT * FROM users OFFSET 0 LIMIT 2"/>
|
||||||
</switches>
|
</switches>
|
||||||
<parse>
|
<parse>
|
||||||
<item value="r'SELECT \* FROM users OFFSET 0 LIMIT 2 \[2\].+1, luther, blissett.+2, fluffy, bunny'"/>
|
<item value="r'SELECT \* FROM users OFFSET 0 LIMIT 2 \[2\].+1, luther, blisset.+2, fluffy, bunny'"/>
|
||||||
</parse>
|
</parse>
|
||||||
</case>
|
</case>
|
||||||
<case name="PostgreSQL boolean-based multi-threaded custom ordered SQL query enumeration">
|
<case name="PostgreSQL boolean-based multi-threaded custom ordered SQL query enumeration">
|
||||||
|
|
@ -1283,7 +1498,7 @@
|
||||||
<query value="SELECT * FROM users ORDER BY name"/>
|
<query value="SELECT * FROM users ORDER BY name"/>
|
||||||
</switches>
|
</switches>
|
||||||
<parse>
|
<parse>
|
||||||
<item value="r'SELECT \* FROM users ORDER BY name \[5\].+2, fluffy, bunny.+1, luther, blissett.+3, wu, ming'"/>
|
<item value="r'SELECT \* FROM users ORDER BY name \[5\].+2, fluffy, bunny.+1, luther, blisset.+3, wu, ming'"/>
|
||||||
</parse>
|
</parse>
|
||||||
</case>
|
</case>
|
||||||
<case name="PostgreSQL error-based multi-threaded custom ordered SQL query enumeration">
|
<case name="PostgreSQL error-based multi-threaded custom ordered SQL query enumeration">
|
||||||
|
|
@ -1294,7 +1509,7 @@
|
||||||
<query value="SELECT * FROM users ORDER BY name"/>
|
<query value="SELECT * FROM users ORDER BY name"/>
|
||||||
</switches>
|
</switches>
|
||||||
<parse>
|
<parse>
|
||||||
<item value="r'SELECT \* FROM users ORDER BY name \[5\].+2, fluffy, bunny.+1, luther, blissett.+3, wu, ming'"/>
|
<item value="r'SELECT \* FROM users ORDER BY name \[5\].+2, fluffy, bunny.+1, luther, blisset.+3, wu, ming'"/>
|
||||||
</parse>
|
</parse>
|
||||||
</case>
|
</case>
|
||||||
<case name="PostgreSQL UNION query multi-threaded custom ordered SQL query enumeration">
|
<case name="PostgreSQL UNION query multi-threaded custom ordered SQL query enumeration">
|
||||||
|
|
@ -1306,7 +1521,52 @@
|
||||||
</switches>
|
</switches>
|
||||||
<parse>
|
<parse>
|
||||||
<!-- NOTE: it is not sorted on purpose because UNION does not play well with ORDER BY and it is stripped -->
|
<!-- NOTE: it is not sorted on purpose because UNION does not play well with ORDER BY and it is stripped -->
|
||||||
<item value="r'SELECT \* FROM users ORDER BY name \[5\].+1, luther, blissett.+2, fluffy, bunny.+3, wu, ming'"/>
|
<item value="r'SELECT \* FROM users ORDER BY name \[5\].+1, luther, blisset.+2, fluffy, bunny.+3, wu, ming'"/>
|
||||||
|
</parse>
|
||||||
|
</case>
|
||||||
|
<case name="SQLite boolean-based multi-threaded custom SQL query enumeration">
|
||||||
|
<switches>
|
||||||
|
<url value="http://debiandev/sqlmap/sqlite/get_int.php?id=1"/>
|
||||||
|
<threads value="4"/>
|
||||||
|
<tech value="B"/>
|
||||||
|
<query value="SELECT * FROM users LIMIT 0, 2"/>
|
||||||
|
</switches>
|
||||||
|
<parse>
|
||||||
|
<item value="r'SELECT \* FROM users LIMIT 0, 2 \[2\].+1, luther, blisset.+2, fluffy, bunny'"/>
|
||||||
|
</parse>
|
||||||
|
</case>
|
||||||
|
<case name="SQLite UNION query multi-threaded custom SQL query enumeration">
|
||||||
|
<switches>
|
||||||
|
<url value="http://debiandev/sqlmap/sqlite/get_int.php?id=1"/>
|
||||||
|
<threads value="4"/>
|
||||||
|
<tech value="U"/>
|
||||||
|
<query value="SELECT * FROM users LIMIT 0, 2"/>
|
||||||
|
</switches>
|
||||||
|
<parse>
|
||||||
|
<item value="r'SELECT \* FROM users LIMIT 0, 2 \[2\].+1, luther, blisset.+2, fluffy, bunny'"/>
|
||||||
|
</parse>
|
||||||
|
</case>
|
||||||
|
<case name="SQLite boolean-based multi-threaded custom ordered SQL query enumeration">
|
||||||
|
<switches>
|
||||||
|
<url value="http://debiandev/sqlmap/sqlite/get_int.php?id=1"/>
|
||||||
|
<threads value="4"/>
|
||||||
|
<tech value="B"/>
|
||||||
|
<query value="SELECT * FROM users ORDER BY name"/>
|
||||||
|
</switches>
|
||||||
|
<parse>
|
||||||
|
<item value="r'SELECT \* FROM users ORDER BY name \[5\].+2, fluffy, bunny.+1, luther, blisset.+3, wu, ming'"/>
|
||||||
|
</parse>
|
||||||
|
</case>
|
||||||
|
<case name="SQLite UNION query multi-threaded custom ordered SQL query enumeration">
|
||||||
|
<switches>
|
||||||
|
<url value="http://debiandev/sqlmap/sqlite/get_int.php?id=1"/>
|
||||||
|
<threads value="4"/>
|
||||||
|
<tech value="U"/>
|
||||||
|
<query value="SELECT * FROM users ORDER BY name"/>
|
||||||
|
</switches>
|
||||||
|
<parse>
|
||||||
|
<!-- NOTE: it is not sorted on purpose because UNION does not play well with ORDER BY and it is stripped -->
|
||||||
|
<item value="r'SELECT \* FROM users ORDER BY name \[4\].+1, luther, blisset.+2, fluffy, bunny.+3, wu, ming'"/>
|
||||||
</parse>
|
</parse>
|
||||||
</case>
|
</case>
|
||||||
<!-- End of user's provided statement enumeration switches -->
|
<!-- End of user's provided statement enumeration switches -->
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue
Block a user