sqlmap

mirror of https://github.com/sqlmapproject/sqlmap.git synced 2025-11-04 01:47:37 +03:00

Author	SHA1	Message	Date
Bernardo Damele	32f1909131	Some more "advanced" boundaries	2010-12-06 23:15:41 +00:00
Miroslav Stampar	84a038d0a3	added one more subtag	2010-12-06 23:10:38 +00:00
Miroslav Stampar	1031723c89	added one more time based blind for Oracle	2010-12-06 23:05:53 +00:00
Miroslav Stampar	7697d19292	space replace is not needed in other two Oracle error based payloads; removing incorrect dbms_version for ctxsys.drithsx.sn as it also works on 10g	2010-12-06 22:52:18 +00:00
Miroslav Stampar	2735848ab6	removed ERROR_SPACE	2010-12-06 22:40:07 +00:00
Miroslav Stampar	f516c18a2a	minor update	2010-12-06 21:39:57 +00:00
Miroslav Stampar	0c5c2aa807	adding one more error based payload for Oracle	2010-12-06 21:20:26 +00:00
Miroslav Stampar	956a155377	adding one more error based payload for Oracle	2010-12-06 20:43:23 +00:00
Miroslav Stampar	ff43a4a955	minor update to preserve consistency of payload naming	2010-12-06 20:28:26 +00:00
Miroslav Stampar	c0e05d6869	update	2010-12-06 19:11:05 +00:00
Miroslav Stampar	9ccc8f90a3	minor cosmetic update ("heuristics shows" is not grammatically correct)	2010-12-06 18:47:22 +00:00
Miroslav Stampar	d336f1df23	minor update	2010-12-06 18:44:42 +00:00
Miroslav Stampar	d77ddbee47	OR based inference works for the first time in history and fingerprint of 4 major DBMSes is now injection based (instead of AND)	2010-12-06 18:20:57 +00:00
Miroslav Stampar	e4b51dd549	proper way of handling OR based injections (completely compatible with current AND based inference engine)	2010-12-06 17:23:21 +00:00
Miroslav Stampar	27ee9a5ccf	minor refactoring	2010-12-06 15:50:19 +00:00
Miroslav Stampar	e8be14e00a	minor refactoring	2010-12-06 07:48:14 +00:00
Miroslav Stampar	a43d252ae9	minor update	2010-12-06 00:14:08 +00:00
Miroslav Stampar	5189f138d7	increasing socket timeout in case of time based checks	2010-12-05 23:18:16 +00:00
Bernardo Damele	17449754fe	Got rid of UNION false cond	2010-12-05 16:16:15 +00:00
Bernardo Damele	a1e89d3e94	Minor tweak	2010-12-05 13:12:12 +00:00
Bernardo Damele	da3fd17fc3	Adjustment to make it work also in OR based injection	2010-12-05 12:24:23 +00:00
Bernardo Damele	bf425d90bc	More tweaking	2010-12-05 12:23:18 +00:00
Bernardo Damele	41e1b95c6c	Minor code refactoring and finally make exploitation work also on OR boolean-based injections	2010-12-05 11:25:44 +00:00
Miroslav Stampar	7a5cd3b35f	minor comment update	2010-12-05 11:15:09 +00:00
Bernardo Damele	191ba3118f	Cosmetics	2010-12-05 11:08:52 +00:00
Bernardo Damele	1b17bac494	Sorted out	2010-12-05 11:06:37 +00:00
Bernardo Damele	618b3b0211	Cosmetics	2010-12-05 11:05:57 +00:00
Bernardo Damele	8066610217	Minor improvements to OR based injections	2010-12-05 10:55:19 +00:00
Bernardo Damele	2612615978	Major improvements	2010-12-04 16:40:08 +00:00
Miroslav Stampar	9e5f933ace	some updates	2010-12-04 15:47:02 +00:00
Miroslav Stampar	3f9450b9dc	minor fix	2010-12-04 14:43:35 +00:00
Miroslav Stampar	1f795622b3	some fine tuning of dynamicity removing engine	2010-12-04 13:39:35 +00:00
Miroslav Stampar	eeb199375b	usage of compiled regexes in case of dynamic markings and other refactoring	2010-12-04 13:23:28 +00:00
Miroslav Stampar	0fc7a8f9e8	code refactoring	2010-12-04 10:13:18 +00:00
Miroslav Stampar	04714374f9	now you can use kb.pageTemplate to set a page which will be used as a template in comparison process (at least in '-[RANDNUM] OR' cases we'll need to use different template(s))	2010-12-04 10:05:18 +00:00
Bernardo Damele	95a3f4b52f	Rudimental OR boolean-based tests for login forms	2010-12-03 22:58:35 +00:00
Miroslav Stampar	b3a094b9d6	fix for a bug reported by ToR (when resuming: queries[kb.dbms] -> KeyError: u'mysql')	2010-12-03 22:44:29 +00:00
Miroslav Stampar	5764816891	minor cosmetics	2010-12-03 22:28:09 +00:00
Bernardo Damele	5d37df6104	Ugly code to set the cookies when got them from a 302 redirect too	2010-12-03 17:41:10 +00:00
Bernardo Damele	9d55c4da87	Done with support for injection in ORDER BY and GROUP BY (hopefully)	2010-12-03 16:12:47 +00:00
Bernardo Damele	91c3cf8fd0	Minor improvement	2010-12-03 16:11:57 +00:00
Bernardo Damele	0e6359ab6e	Minor layout adjustment	2010-12-03 16:11:35 +00:00
Bernardo Damele	6e73adec47	Get rid of one useless attribute	2010-12-03 16:11:13 +00:00
Bernardo Damele	126a1479d8	Bug fix for --union-test	2010-12-03 14:57:30 +00:00
Bernardo Damele	072835e04b	Removed for time being	2010-12-03 14:48:31 +00:00
Bernardo Damele	11058667e4	Better naming	2010-12-03 14:45:13 +00:00
Bernardo Damele	b824826a89	Minor enhancement to prefix payload in ORDER BY and GROUP BY clauses	2010-12-03 14:39:51 +00:00
Bernardo Damele	bb40ab9fb0	Major bug fix for default boolean-based vector still work and minor adjustments	2010-12-03 14:31:11 +00:00
Miroslav Stampar	612ee08a0b	added response time kb attribute	2010-12-03 13:19:34 +00:00
Miroslav Stampar	73dfb69308	minor update for OR based time injection (Firebird)	2010-12-03 12:15:41 +00:00

... 128 129 130 131 132 ...

7951 Commits