sqlmapproject/sqlmap
1
1
Fork 0
mirror of https://github.com/sqlmapproject/sqlmap.git synced 2024-11-22 17:46:37 +03:00
Code Issues Packages Projects Releases Wiki Activity

updated regression tests

Browse Source
This commit is contained in:
Bernardo Damele 2014-07-17 17:13:09 +01:00
parent cd1c100cc0
commit a09e590fe8
1 changed files with 53 additions and 29 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

82
xml/livetests.xml
View File

@ -62,7 +62,7 @@
<parse>
<item value="Title: AND boolean-based blind - WHERE or HAVING clause"/>
<item value="r'back-end DBMS: active fingerprint: MySQL &gt;= 5.5.0'"/>
<item value="banner: '5.5.35-0+wheezy1'"/>
<item value="banner: '5.5.37-0+wheezy1'"/>
<item value="current user: 'root@localhost'"/>
<item value="current database: 'testdb'"/>
<item value="hostname: 'debian"/>
@ -106,7 +106,7 @@
<parse>
<item value="Title: MySQL &gt;= 5.0 AND error-based - WHERE or HAVING clause"/>
<item value="r'back-end DBMS: active fingerprint: MySQL &gt;= 5.5.0'"/>
<item value="banner: '5.5.35-0+wheezy1'"/>
<item value="banner: '5.5.37-0+wheezy1'"/>
<item value="current user: 'root@localhost'"/>
<item value="current database: 'testdb'"/>
<item value="hostname: 'debian"/>
@ -150,7 +150,7 @@
<parse>
<item value="Title: MySQL UNION query (NULL) - 3 columns"/>
<item value="r'back-end DBMS: active fingerprint: MySQL &gt;= 5.5.0'"/>
<item value="banner: '5.5.35-0+wheezy1'"/>
<item value="banner: '5.5.37-0+wheezy1'"/>
<item value="current user: 'root@localhost'"/>
<item value="current database: 'testdb'"/>
<item value="hostname: 'debian"/>
@ -194,7 +194,7 @@
<parse>
<item value="Title: MySQL UNION query (NULL) - 3 columns"/>
<item value="r'back-end DBMS: active fingerprint: MySQL &gt;= 5.5.0'"/>
<item value="banner: '5.5.35-0+wheezy1'"/>
<item value="banner: '5.5.37-0+wheezy1'"/>
<item value="current user: 'root@localhost'"/>
<item value="current database: 'testdb'"/>
<item value="hostname: 'debian"/>
@ -220,7 +220,7 @@
</switches>
<parse>
<item value="Title: MySQL &gt; 5.0.11 AND time-based blind"/>
<item value="banner: '5.5.35-0+wheezy1'"/>
<item value="banner: '5.5.37-0+wheezy1'"/>
<item value="current user is DBA: True"/>
</parse>
</case>
@ -252,7 +252,7 @@
<parse>
<item value="Title: MySQL inline queries"/>
<item value="r'back-end DBMS: active fingerprint: MySQL &gt;= 5.5.0'"/>
<item value="banner: '5.5.35-0+wheezy1'"/>
<item value="banner: '5.5.37-0+wheezy1'"/>
<item value="current user: 'root@localhost'"/>
<item value="current database: 'testdb'"/>
<item value="hostname: 'debian"/>
@ -295,7 +295,7 @@
<parse>
<item value="Title: AND boolean-based blind - WHERE or HAVING clause"/>
<item value="r'back-end DBMS: active fingerprint: PostgreSQL &gt;= 9.1.0'"/>
<item value="banner: 'PostgreSQL 9.1.11 on i686-pc-linux-gnu, compiled by gcc (Debian 4.7.2-5) 4.7.2, 32-bit'"/>
<item value="banner: 'PostgreSQL 9.1.13 on i686-pc-linux-gnu, compiled by gcc (Debian 4.7.2-5) 4.7.2, 32-bit"/>
<item value="current user: 'postgres'"/>
<item value="current schema (equivalent to database on PostgreSQL): 'public'"/>
<item value="current user is DBA: True"/>
@ -338,7 +338,7 @@
<parse>
<item value="Title: PostgreSQL AND error-based - WHERE or HAVING clause"/>
<item value="r'back-end DBMS: active fingerprint: PostgreSQL &gt;= 9.1.0'"/>
<item value="banner: 'PostgreSQL 9.1.11 on i686-pc-linux-gnu, compiled by gcc (Debian 4.7.2-5) 4.7.2, 32-bit'"/>
<item value="banner: 'PostgreSQL 9.1.13 on i686-pc-linux-gnu, compiled by gcc (Debian 4.7.2-5) 4.7.2, 32-bit"/>
<item value="current user: 'postgres'"/>
<item value="current schema (equivalent to database on PostgreSQL): 'public'"/>
<item value="current user is DBA: True"/>
@ -381,7 +381,7 @@
<parse>
<item value="Title: Generic UNION query (NULL) - 3 columns"/>
<item value="r'back-end DBMS: active fingerprint: PostgreSQL &gt;= 9.1.0'"/>
<item value="banner: 'PostgreSQL 9.1.11 on i686-pc-linux-gnu, compiled by gcc (Debian 4.7.2-5) 4.7.2, 32-bit'"/>
<item value="banner: 'PostgreSQL 9.1.13 on i686-pc-linux-gnu, compiled by gcc (Debian 4.7.2-5) 4.7.2, 32-bit"/>
<item value="current user: 'postgres'"/>
<item value="current schema (equivalent to database on PostgreSQL): 'public'"/>
<item value="current user is DBA: True"/>
@ -424,7 +424,7 @@
<parse>
<item value="Title: Generic UNION query (NULL) - 3 columns"/>
<item value="r'back-end DBMS: active fingerprint: PostgreSQL &gt;= 9.1.0'"/>
<item value="banner: 'PostgreSQL 9.1.11 on i686-pc-linux-gnu, compiled by gcc (Debian 4.7.2-5) 4.7.2, 32-bit'"/>
<item value="banner: 'PostgreSQL 9.1.13 on i686-pc-linux-gnu, compiled by gcc (Debian 4.7.2-5) 4.7.2, 32-bit"/>
<item value="current user: 'postgres'"/>
<item value="current schema (equivalent to database on PostgreSQL): 'public'"/>
<item value="current user is DBA: True"/>
@ -449,7 +449,7 @@
</switches>
<parse>
<item value="Title: PostgreSQL &gt; 8.1 AND time-based blind"/>
<item value="banner: 'PostgreSQL 9.1.11 on i686-pc-linux-gnu, compiled by gcc (Debian 4.7.2-5) 4.7.2, 32-bit'"/>
<item value="banner: 'PostgreSQL 9.1.13 on i686-pc-linux-gnu, compiled by gcc (Debian 4.7.2-5) 4.7.2, 32-bit"/>
<item value="current user is DBA: True"/>
</parse>
</case>
@ -463,7 +463,7 @@
</switches>
<parse>
<item value="Title: PostgreSQL &gt; 8.1 stacked queries"/>
<item value="banner: 'PostgreSQL 9.1.11 on i686-pc-linux-gnu, compiled by gcc (Debian 4.7.2-5) 4.7.2, 32-bit'"/>
<item value="banner: 'PostgreSQL 9.1.13 on i686-pc-linux-gnu, compiled by gcc (Debian 4.7.2-5) 4.7.2, 32-bit"/>
<item value="current user is DBA: True"/>
</parse>
</case>
@ -495,7 +495,7 @@
<parse>
<item value="Title: PostgreSQL inline queries"/>
<item value="r'back-end DBMS: active fingerprint: PostgreSQL &gt;= 9.1.0'"/>
<item value="banner: 'PostgreSQL 9.1.11 on i686-pc-linux-gnu, compiled by gcc (Debian 4.7.2-5) 4.7.2, 32-bit'"/>
<item value="banner: 'PostgreSQL 9.1.13 on i686-pc-linux-gnu, compiled by gcc (Debian 4.7.2-5) 4.7.2, 32-bit"/>
<item value="current user: 'postgres'"/>
<item value="current schema (equivalent to database on PostgreSQL): 'public'"/>
<item value="current user is DBA: True"/>
@ -1488,6 +1488,7 @@
<threads value="4"/>
<tech value="B"/>
<commonTables value="True"/>
<answers value="are you sure you want to continue=Y"/>
</switches>
<parse>
<item value="r'Current database.+2 tables.+data.+users'"/>
@ -1500,6 +1501,7 @@
<tech value="B"/>
<db value="testdb"/>
<commonTables value="True"/>
<answers value="are you sure you want to continue=Y"/>
</switches>
<parse>
<item value="r'Database: testdb.+2 tables.+data.+users'"/>
@ -1511,6 +1513,7 @@
<threads value="4"/>
<tech value="E"/>
<commonTables value="True"/>
<answers value="are you sure you want to continue=Y"/>
</switches>
<parse>
<item value="r'Current database.+2 tables.+data.+users'"/>
@ -1523,6 +1526,7 @@
<tech value="E"/>
<db value="testdb"/>
<commonTables value="True"/>
<answers value="are you sure you want to continue=Y"/>
</switches>
<parse>
<item value="r'Database: testdb.+2 tables.+data.+users'"/>
@ -1534,6 +1538,7 @@
<threads value="4"/>
<tech value="U"/>
<commonTables value="True"/>
<answers value="are you sure you want to continue=Y"/>
</switches>
<parse>
<item value="r'Current database.+2 tables.+data.+users'"/>
@ -1546,6 +1551,7 @@
<tech value="U"/>
<db value="testdb"/>
<commonTables value="True"/>
<answers value="are you sure you want to continue=Y"/>
</switches>
<parse>
<item value="r'Database: testdb.+2 tables.+data.+users'"/>
@ -1557,6 +1563,7 @@
<threads value="4"/>
<tech value="B"/>
<commonTables value="True"/>
<answers value="are you sure you want to continue=Y"/>
</switches>
<parse>
<item value="r'Current database.+2 tables.+users'"/>
@ -1569,6 +1576,7 @@
<tech value="B"/>
<db value="public"/>
<commonTables value="True"/>
<answers value="are you sure you want to continue=Y"/>
</switches>
<parse>
<item value="r'Database: public.+1 table.+users'"/>
@ -1580,6 +1588,7 @@
<threads value="4"/>
<tech value="E"/>
<commonTables value="True"/>
<answers value="are you sure you want to continue=Y"/>
</switches>
<parse>
<item value="r'Current database.+2 tables.+users'"/>
@ -1592,6 +1601,7 @@
<tech value="E"/>
<db value="public"/>
<commonTables value="True"/>
<answers value="are you sure you want to continue=Y"/>
</switches>
<parse>
<item value="r'Database: public.+1 table.+users'"/>
@ -1603,6 +1613,7 @@
<threads value="4"/>
<tech value="U"/>
<commonTables value="True"/>
<answers value="are you sure you want to continue=Y"/>
</switches>
<parse>
<item value="r'Current database.+2 tables.+users'"/>
@ -1615,6 +1626,7 @@
<tech value="U"/>
<db value="public"/>
<commonTables value="True"/>
<answers value="are you sure you want to continue=Y"/>
</switches>
<parse>
<item value="r'Database: public.+1 table.+users'"/>
@ -1626,6 +1638,7 @@
<threads value="4"/>
<tech value="B"/>
<commonTables value="True"/>
<answers value="are you sure you want to continue=Y"/>
</switches>
<parse>
<item value="r'Current database.+6 tables.+USERS'"/>
@ -1638,6 +1651,7 @@
<tech value="B"/>
<db value="sys"/>
<commonTables value="True"/>
<answers value="are you sure you want to continue=Y"/>
</switches>
<parse>
<item value="r'Database: SYS.+6 tables.+USERS'"/>
@ -1649,6 +1663,7 @@
<threads value="4"/>
<tech value="E"/>
<commonTables value="True"/>
<answers value="are you sure you want to continue=Y"/>
</switches>
<parse>
<item value="r'Current database.+6 tables.+USERS'"/>
@ -1661,6 +1676,7 @@
<tech value="E"/>
<db value="sys"/>
<commonTables value="True"/>
<answers value="are you sure you want to continue=Y"/>
</switches>
<parse>
<item value="r'Database: SYS.+6 tables.+USERS'"/>
@ -1672,6 +1688,7 @@
<threads value="4"/>
<tech value="U"/>
<commonTables value="True"/>
<answers value="are you sure you want to continue=Y"/>
</switches>
<parse>
<item value="r'Current database.+6 tables.+USERS'"/>
@ -1684,6 +1701,7 @@
<tech value="U"/>
<db value="sys"/>
<commonTables value="True"/>
<answers value="are you sure you want to continue=Y"/>
</switches>
<parse>
<item value="r'Database: SYS.+6 tables.+USERS'"/>
@ -1695,6 +1713,7 @@
<threads value="4"/>
<tech value="B"/>
<commonTables value="True"/>
<answers value="are you sure you want to continue=Y"/>
</switches>
<parse>
<item value="r'Current database.+1 table.+users'"/>
@ -1707,6 +1726,7 @@
<tech value="B"/>
<db value="db2inst1"/>
<commonTables value="True"/>
<answers value="are you sure you want to continue=Y"/>
</switches>
<parse>
<item value="r'Database: DB2INST1.+1 table.+users'"/>
@ -1718,6 +1738,7 @@
<threads value="4"/>
<tech value="B"/>
<commonTables value="True"/>
<answers value="are you sure you want to continue=Y"/>
</switches>
<parse>
<item value="r'Current database.+1 table.+users'"/>
@ -1729,6 +1750,7 @@
<threads value="4"/>
<tech value="U"/>
<commonTables value="True"/>
<answers value="are you sure you want to continue=Y"/>
</switches>
<parse>
<item value="r'Current database.+1 table.+users'"/>
@ -1740,6 +1762,7 @@
<threads value="4"/>
<tech value="B"/>
<commonTables value="True"/>
<answers value="are you sure you want to continue=Y"/>
</switches>
<parse>
<item value="r'Current database.+1 table.+users'"/>
@ -1751,6 +1774,7 @@
<threads value="4"/>
<tech value="U"/>
<commonTables value="True"/>
<answers value="are you sure you want to continue=Y"/>
</switches>
<parse>
<item value="r'Current database.+1 table.+users'"/>
@ -3311,7 +3335,7 @@
</switches>
<parse>
<item value="Title: OR boolean-based blind - WHERE or HAVING clause"/>
<item value="banner: '5.5.35-0+wheezy1'"/>
<item value="banner: '5.5.37-0+wheezy1'"/>
<item value="current user is DBA: True"/>
</parse>
</case>
@ -3347,7 +3371,7 @@
<tbl value="international"/>
</switches>
<parse>
<item value="banner: '5.5.35-0+wheezy1'"/>
<item value="banner: '5.5.37-0+wheezy1'"/>
<item value="r'Database: testdb.+Table: international.+3 entries.+šućuraj.+长江.+река Москва'"/>
</parse>
</case>
@ -3405,7 +3429,7 @@
<parse>
<item value="Title: MySQL UNION query (NULL) - 3 columns"/>
<item value="r'Payload: id=[\d]+\.[\d]+ UNION'"/>
<item value="banner: '5.5.35-0+wheezy1'"/>
<item value="banner: '5.5.37-0+wheezy1'"/>
<item value="current user is DBA: True"/>
</parse>
</case>
@ -3420,7 +3444,7 @@
<parse>
<item value="Title: MySQL UNION query (NULL) - 3 columns"/>
<item value="r'Payload: id=1 AND [\d]+=[\d]+ UNION'"/>
<item value="banner: '5.5.35-0+wheezy1'"/>
<item value="banner: '5.5.37-0+wheezy1'"/>
<item value="current user is DBA: True"/>
</parse>
</case>
@ -3436,7 +3460,7 @@
<getBanner value="True"/>
</switches>
<parse>
<item value="banner: '5.5.35-0+wheezy1'"/>
<item value="banner: '5.5.37-0+wheezy1'"/>
</parse>
</case>
<case name="HTTP digest authentication">
@ -3448,7 +3472,7 @@
<getBanner value="True"/>
</switches>
<parse>
<item value="banner: '5.5.35-0+wheezy1'"/>
<item value="banner: '5.5.37-0+wheezy1'"/>
</parse>
</case>
<case name="Boolean-based predict output enumeration">
@ -3460,7 +3484,7 @@
<getBanner value="True"/>
</switches>
<parse>
<item value="banner: '5.5.35-0+wheezy1'"/>
<item value="banner: '5.5.37-0+wheezy1'"/>
<item value="r'performed 112 queries'" console_output="True"/>
</parse>
</case>
@ -3474,7 +3498,7 @@
<getBanner value="True"/>
</switches>
<parse>
<item value="banner: '5.5.35-0+wheezy1'"/>
<item value="banner: '5.5.37-0+wheezy1'"/>
<item value="r'performed 112 queries'" console_output="True"/>
</parse>
</case>
@ -3487,7 +3511,7 @@
<getBanner value="True"/>
</switches>
<parse>
<item value="banner: '5.5.35-0+wheezy1'"/>
<item value="banner: '5.5.37-0+wheezy1'"/>
<item value="r'performed 126 queries'" console_output="True"/>
</parse>
</case>
@ -3520,7 +3544,7 @@
<parse>
<item value="Title: MySQL &gt;= 5.0 AND error-based - WHERE or HAVING clause"/>
<item value="r'back-end DBMS: active fingerprint: MySQL &gt;= 5.5.0'"/>
<item value="banner: '5.5.35-0+wheezy1'"/>
<item value="banner: '5.5.37-0+wheezy1'"/>
<item value="current user: 'root@localhost'"/>
<item value="current database: 'testdb'"/>
<item value="hostname: 'debian"/>
@ -3544,7 +3568,7 @@
<getBanner value="True"/>
</switches>
<parse>
<item value="banner: '5.5.35-0+wheezy1'"/>
<item value="banner: '5.5.37-0+wheezy1'"/>
</parse>
</case>
<case name="Custom POST data injection mark">
@ -3556,7 +3580,7 @@
<getBanner value="True"/>
</switches>
<parse>
<item value="banner: '5.5.35-0+wheezy1'"/>
<item value="banner: '5.5.37-0+wheezy1'"/>
</parse>
</case>
<case name="Custom HTTP header (UA) injection mark">
@ -3568,7 +3592,7 @@
<getBanner value="True"/>
</switches>
<parse>
<item value="banner: '5.5.35-0+wheezy1'"/>
<item value="banner: '5.5.37-0+wheezy1'"/>
</parse>
</case>
<case name="Custom FROM table in UNION query">
@ -3581,7 +3605,7 @@
</switches>
<parse>
<item value="r'VERSION\(\).+FROM INFORMATION_SCHEMA\.COLLATIONS'" console_output="True"/>
<item value="banner: '5.5.35-0+wheezy1'"/>
<item value="banner: '5.5.37-0+wheezy1'"/>
</parse>
</case>
<case name="Estimated time of arrival">
@ -3593,7 +3617,7 @@
<getBanner value="True"/>
</switches>
<parse>
<item value="banner: '5.5.35-0+wheezy1'"/>
<item value="banner: '5.5.37-0+wheezy1'"/>
<item value="r'100\% \[===.+=\] 17\/17'" console_output="True"/>
</parse>
</case>
@ -3605,7 +3629,7 @@
<answers value="Do you want to keep testing the others=Y"/>
</switches>
<parse>
<item value="banner: '5.5.35-0+wheezy1'"/>
<item value="banner: '5.5.37-0+wheezy1'"/>
<item value="testing for SQL injection on GET parameter 'pAram'" console_output="True"/>
<item value="testing for SQL injection on GET parameter 's'" console_output="True"/>
<item value="testing for SQL injection on GET parameter 'id'" console_output="True"/>