sqlmapproject/sqlmap
1
1
Fork 0
mirror of https://github.com/sqlmapproject/sqlmap.git synced 2025-10-31 07:57:47 +03:00
Code Issues Packages Projects Releases Wiki Activity
7,859 Commits 2 Branches 130 Tags 98 MiB
53eb44304f
Commit Graph

728 Commits

Author SHA1 Message Date
Miroslav Stampar
a9526bda92 Minor patch 2016-04-11 22:38:44 +02:00
Miroslav Stampar
c9b410c97f Minor update 2016-04-08 14:59:52 +02:00
Miroslav Stampar
38fcc5a35a Update for pre-WHERE payloads 2016-04-08 13:19:42 +02:00
Miroslav Stampar
8ceb4907a5 Another update for Issue #1800 2016-04-08 11:37:38 +02:00
Miroslav Stampar
ce3749622a Minor revisit of payload boundaries (Issue #1800) 2016-04-08 11:28:17 +02:00
Miroslav Stampar
ac08db82b2 Including one more error regex (based on testasp[.]vulnweb[.]com) 2016-04-04 16:14:30 +02:00
Miroslav Stampar
ad3b766b65 Adding in-table name boundaries 2016-03-26 09:39:28 +01:00
Miroslav Stampar
242800c085 Minor update related to the #1740 2016-03-01 15:40:34 +01:00
Ewerson Guimaraes (Crash)
8df56ecc72 Update errors.xml 
Add support to Sybase 15.7 error based
 2016-03-01 15:13:38 +01:00
Miroslav Stampar
f54b25ca2a Adding one more regex for MsAccess error recognition 2016-01-17 15:22:53 +01:00
Miroslav Stampar
df8e4b504d Patch for special cases of OR boolean-based blind (covered with last two commits) 2016-01-14 13:51:30 +01:00
Miroslav Stampar
85b35f44a0 Minor refactoring for #1637 2016-01-09 17:39:53 +01:00
Andrew Smith
777e4a3db2 Update for false positives 
Attempt to eliminate false positives using more specific regex
 2016-01-07 15:42:22 -05:00
Andrew Smith
b84d787f4a Addition of IBM DB2 Error Codes 2016-01-07 10:15:09 -05:00
Miroslav Stampar
7411ff93e5 Minor update related to the #1620 2015-12-23 08:14:18 +01:00
Miroslav Stampar
94639d11a3 Another update related to the #1539 2015-11-16 15:33:05 +01:00
Miroslav Stampar
5593bf2fee Another patch related to #1539 (simplifying unicode bad chars and preventing double encoding of safe chars) 2015-11-16 15:02:30 +01:00
Miroslav Stampar
5ff59296ef Space after the generic comments has to be "protected" 2015-10-22 14:47:19 +02:00
Miroslav Stampar
570562369b Further fixes for sqlmap to work properly with HSQLDB (WebGoat) 2015-10-13 13:04:59 +02:00
Miroslav Stampar
ecef769200 More generic approach (non-: versions appear too) 2015-10-10 15:23:09 +02:00
Miroslav Stampar
786b51e6e4 Minor patch 2015-10-10 15:18:47 +02:00
Miroslav Stampar
17ee402592 Adding error regexes for HSQLDB 2015-10-10 14:53:08 +02:00
Miroslav Stampar
9641e84dd9 Bug fixes for HSQLDB 2015-10-09 16:52:13 +02:00
Miroslav Stampar
ee22c477db Minor patch for #1363 2015-08-28 10:59:12 +02:00
Miroslav Stampar
61b33f24d4 Implements #1363 2015-08-28 10:52:36 +02:00
Miroslav Stampar
26bec7219d Update for an Issue #1184 2015-03-31 07:33:50 +02:00
Bernardo Damele
9eb7a0a0f2 enhanced time-based payloads - issue #1169 2015-03-19 12:09:43 +00:00
Bernardo Damele
43f6cb1508 some more boundaries 2015-03-19 12:07:26 +00:00
Bernardo Damele
2bdf121915 cleanup 2015-03-04 13:36:09 +00:00
Bernardo Damele A. G.
b2fca35c36 consolidated some time-based blind payloads - issue #1169 2015-03-03 14:22:20 +00:00
Bernardo Damele
37ca0a95f1 consolidated stacked queries payloads - issue #1169 2015-03-03 14:19:36 +00:00
Bernardo Damele
849ca3da3d added a newline 2015-03-03 14:18:53 +00:00
Miroslav Stampar
b74edf9664 Fixes #1175 2015-02-25 10:16:01 +01:00
Bernardo Damele
21c1ae427b swapped generic and MySQL-specific UNION payloads - issue #1169 2015-02-21 12:57:28 +00:00
Bernardo Damele
ef9d4b58ae minor signature for PHP pgsql functions 2015-02-21 02:24:03 +00:00
Bernardo Damele
4bbf168b18 Minor titles fix 2015-02-20 18:35:13 +00:00
Bernardo Damele
ab6cc271d3 Major consistency rework of error-based payloads - issue #1169 2015-02-20 18:34:47 +00:00
Bernardo Damele
9fed41ddc2 Major consistency rework of boolean payloads - issue #1169 2015-02-20 18:34:23 +00:00
Bernardo Damele
2d886011c8 Consistency in enums 2015-02-20 18:33:04 +00:00
Bernardo Damele
1ecb921ba7 Consistency in enums 2015-02-20 18:31:47 +00:00
Bernardo Damele
3b3205c532 Minor stacked queries and time-based payloads cleanup - issue #1169 2015-02-20 15:44:06 +00:00
Bernardo Damele
5b65d2e133 more consistency of boolean blind payloads - issue #1169 2015-02-20 11:34:16 +00:00
Bernardo Damele
f547a776d8 consolidating blind based payloads - issue #1169 2015-02-19 16:42:26 +00:00
Bernardo Damele
4195f770a3 removing one unnecessary character from stacked payloads 2015-02-19 16:41:55 +00:00
Bernardo Damele
1e9586c90b minor layout fix 2015-02-19 16:18:16 +00:00
Bernardo Damele
6cc092b926 split payloads in different files 2015-02-18 10:13:44 +00:00
Bernardo Damele
560bc7cc28 minor fixes 2015-02-18 09:51:07 +00:00
Bernardo Damele
c51ecf33f3 ported the recent MySQL time-based payload (introduced with 66c2a79397) to other techniques and conditions 2015-02-18 09:45:44 +00:00
Bernardo Damele
84349a370a minor code cleanup 2015-02-15 19:51:07 +00:00
Bernardo Damele
32ab52b8ca code refactoring: split boundaries and payloads XML files 2015-02-15 16:31:35 +00:00
Bernardo Damele
66c2a79397 added a time-based payload for MySQL when the simpler AND SLEEP(X) does not work 2015-02-03 15:14:41 +00:00
Miroslav Stampar
ae95fd91c2 Implementation for an Issue #1135 2015-01-24 23:49:33 +01:00
Miroslav Stampar
4f122ee008 Bug fix regarding a problem reported by user @blink2014 2014-12-20 00:23:31 +01:00
Miroslav Stampar
0b91a6098f Patch for an Issue #1050 2014-12-18 15:13:44 +01:00
Miroslav Stampar
0c99b79c60 Minor fix 2014-11-28 00:54:03 +01:00
Miroslav Stampar
80b9fc4821 Minor fix 2014-11-19 09:21:52 +01:00
Miroslav Stampar
b7aeb670e1 Implementation of a new MySQL error-based payload (found at RDot) 2014-10-29 10:14:01 +01:00
Miroslav Stampar
90869244fd Minor update 2014-09-09 16:19:38 +02:00
Miroslav Stampar
af21fc513d Bug fix for HSQLDB (some queries were runnable on MySQL) 2014-09-03 21:39:38 +02:00
Miroslav Stampar
1478c206f1 Trivial update 2014-09-03 21:27:02 +02:00
Miroslav Stampar
ff8bfff87a Bug fix (FreeBSD != Linux) 2014-08-20 14:45:58 +02:00
Miroslav Stampar
5436635acb Minor update 2014-08-13 13:32:22 +02:00
Bernardo Damele
a09e590fe8 updated regression tests 2014-07-17 17:13:09 +01:00
Markus Wulftange
cf4e0c755b
Add boundary checks for derived tables in FROM clause 2014-05-24 17:25:11 +02:00
Bernardo Damele
78ab525966 minor fix to Oracle payloads 2014-04-09 12:31:52 +00:00
Bernardo Damele
42bde5328d minor fix 2014-04-09 12:29:52 +00:00
Bernardo Damele
9b0662d1a9 added new Oracle time-based payloads 2014-04-09 12:14:16 +00:00
Miroslav Stampar
97f603af4a Fix for an Issue #641 2014-03-17 20:20:25 +01:00
Miroslav Stampar
ae36c08f12 Updating server signatures 2014-03-13 10:05:56 +01:00
Bernardo Damele
07a22070d8 updated signatures for test environment 2014-02-27 15:02:33 +00:00
Miroslav Stampar
b83d531ab3 Minor fix (Reference: https://en.wikipedia.org/wiki/Internet_Information_Services) 2014-02-05 08:32:55 +01:00
Miroslav Stampar
f28b8dbda8 Minor update 2014-02-01 22:24:56 +01:00
Bernardo Damele
4e8ab48145 fixed match 2014-01-13 23:48:00 +00:00
Bernardo Damele
b86353b485 minor fix to DB2 test case 2014-01-13 23:34:25 +00:00
Bernardo Damele
85f60d0c09 leftovers 2014-01-13 17:41:33 +00:00
Bernardo Damele
43a4e85749 updated copyright 2014-01-13 17:24:49 +00:00
Bernardo Damele
9a1be29b45 updated test cases for regression test 2014-01-13 17:12:59 +00:00
Bernardo Damele
4975aafa65 updated live tests 2014-01-10 17:38:04 +00:00
Bernardo Damele
148767941b new host 2014-01-10 17:23:27 +00:00
Miroslav Stampar
178056968f Cleaning a leftover (deleted) made for Issue #564 2013-12-27 10:49:15 +01:00
Miroslav Stampar
cadbddd607 Adding a boundary proposed in Issue #564 2013-12-27 10:46:18 +01:00
Miroslav Stampar
9ead80d707 Minor patch for Issue #585 2013-12-17 09:39:43 +01:00
Miroslav Stampar
663b1e711b Bug fix 2013-12-01 21:22:29 +01:00
Miroslav Stampar
07bd22fa80 Minor fix 2013-12-01 21:03:30 +01:00
Bernardo Damele
378ce46061 NVARCHAR is not supported on Sybase Adaptive Server 2013-10-18 12:23:50 +01:00
Miroslav Stampar
4c39235c2f Minor revert (5->3) 2013-10-11 00:39:44 +02:00
Miroslav Stampar
6305c1e703 Making a comma-less RLIKE payload 2013-10-11 00:39:11 +02:00
Miroslav Stampar
dbaa35f9fe Minor fix 2013-10-10 23:53:43 +02:00
Miroslav Stampar
2dc570d7a8 Minor patch (for ORDER BY 'col' cases) 2013-10-10 23:08:20 +02:00
Miroslav Stampar
6f2c89bd7c Fix for an Issue #529 2013-09-25 10:22:23 +02:00
Miroslav Stampar
31684dbc89 Fix for an Issue #524 2013-09-13 16:16:46 +02:00
Miroslav Stampar
96ccdb7c83 Adding new regular expressions for error messages 2013-09-06 19:41:40 +02:00
Miroslav Stampar
a711c9ed36 Minor cleanup and initial work for #58 2013-08-09 14:13:48 +02:00
Miroslav Stampar
de31688c4f Update for an Issue #481 2013-07-29 18:25:27 +02:00
Miroslav Stampar
df5a6beb6e Queries for Issue #481 2013-07-27 11:11:11 +02:00
stamparm
dbb0d7f700 Important fix (Issue #489) - we had a bad presumption than only public schema could be used for enumeration (while all schemas inside a current db could be used) 2013-07-19 13:24:35 +02:00
stamparm
27bf37e741 Updating to higher levels for HSQLDB specific payloads (like for e.g. Firebird) 2013-07-04 15:41:08 +02:00
stamparm
f97b35dcc1 Patch for an Issue #475 2013-07-01 13:43:38 +02:00
Bernardo Damele
9a8bec760f added fingerprint for HSQLDB based on Tomcat stacktrace message 2013-07-01 12:17:52 +01:00
stamparm
925098686d Minor fix 2013-07-01 13:05:57 +02:00