sqlmap

sqlmapproject/sqlmap

Fork 0

mirror of https://github.com/sqlmapproject/sqlmap.git synced 2025-08-03 03:40:11 +03:00

Commit Graph

Select branches

Hide Pull Requests

gh-pages

master

#102

#102

#1029

#1033

#1037

#1053

#1053

#107

#107

#1112

#1186

#1206

#1227

#1227

#1244

#1244

#1246

#1246

#1300

#1300

#1306

#1306

#1323

#1323

#1328

#1330

#1342

#1342

#1351

#1378

#1378

#1402

#1403

#1403

#1414

#1449

#1449

#1469

#1469

#1500

#1535

#1543

#1565

#1565

#1611

#1611

#1614

#1637

#1678

#1681

#1681

#1700

#1700

#1710

#1727

#1727

#1728

#1732

#1733

#1735

#1740

#1762

#1762

#1763

#1763

#1776

#1776

#1795

#1795

#1805

#1805

#1843

#1843

#1856

#1856

#1898

#1922

#1922

#2011

#2086

#2089

#2134

#2138

#2169

#2169

#2170

#2240

#2250

#2289

#2289

#232

#232

#2323

#2347

#2347

#2350

#2350

#2359

#2369

#2369

#2374

#2378

#2389

#2389

#2397

#2397

#2401

#2410

#2411

#2417

#2417

#2418

#2420

#2420

#2439

#2480

#2481

#2481

#2506

#2506

#252

#252

#2537

#2555

#2590

#2597

#2613

#2613

#2616

#2616

#2618

#2620

#2663

#2663

#2666

#2666

#2667

#2667

#269

#269

#2690

#2690

#2692

#2692

#2695

#2728

#2731

#2732

#2732

#2733

#2733

#2734

#2734

#2742

#2742

#2751

#2751

#2752

#2752

#2756

#2756

#2761

#2782

#2791

#2807

#2807

#2817

#2817

#2823

#2823

#284

#284

#2883

#2883

#2903

#2903

#2904

#2904

#2905

#2905

#2906

#2906

#2931

#2933

#2933

#2951

#2967

#2992

#3009

#3009

#3087

#3087

#3116

#3153

#3153

#3174

#3174

#3188

#320

#320

#321

#321

#3231

#3233

#3233

#3236

#3267

#3267

#3274

#3274

#3316

#3322

#3323

#3326

#3349

#3350

#3351

#3352

#3372

#3376

#3383

#3396

#3398

#3407

#3414

#3416

#3418

#3423

#3432

#3437

#3442

#3443

#3445

#3458

#3472

#3479

#3482

#3488

#3527

#3536

#3573

#3574

#3575

#3579

#3590

#3609

#3645

#3684

#375

#375

#3802

#3855

#3856

#3881

#3896

#39

#39

#3917

#3952

#3955

#3958

#3959

#3965

#3966

#3969

#3970

#3992

#3996

#400

#400

#4007

#4022

#4032

#4033

#4034

#4039

#4041

#4058

#4059

#4077

#4092

#4098

#4099

#41

#41

#4121

#413

#413

#4145

#4146

#4184

#4192

#4198

#4205

#4216

#4218

#4219

#4229

#4243

#4266

#4267

#4279

#4291

#4305

#4323

#4326

#4327

#4344

#4347

#4365

#4374

#4378

#4379

#4385

#4387

#4427

#4429

#4431

#4460

#4501

#4506

#4509

#4573

#4586

#4619

#4620

#4632

#4632

#4633

#4635

#4635

#4643

#4644

#4656

#4657

#466

#466

#4663

#4687

#4691

#4692

#47

#47

#4701

#4732

#4740

#475

#475

#4750

#4815

#4832

#4833

#4833

#4852

#4878

#4918

#4937

#4964

#4975

#4983

#4992

#4998

#5006

#5013

#5021

#5032

#5038

#5055

#5059

#506

#506

#507

#507

#5070

#5095

#5109

#5111

#512

#512

#5127

#5128

#5143

#5156

#5172

#5175

#5175

#5176

#5189

#5198

#5206

#5215

#5229

#5235

#5253

#5260

#5266

#5273

#5288

#53

#53

#530

#530

#5300

#5302

#5305

#5311

#5345

#5354

#5354

#5355

#5356

#536

#536

#5361

#5366

#5377

#5384

#539

#539

#5393

#5395

#5410

#5436

#5436

#5439

#5439

#544

#544

#5443

#5443

#5459

#5475

#5478

#5478

#5490

#5497

#5501

#5507

#5551

#5552

#5553

#5554

#5555

#5556

#5569

#5580

#5586

#5588

#5590

#5592

#5597

#5598

#5599

#5603

#5604

#5609

#5617

#5621

#5625

#5649

#5658

#5665

#5667

#5677

#5679

#5685

#5685

#5687

#5688

#5690

#5692

#5693

#5699

#5702

#5706

#5715

#5721

#5736

#5750

#5751

#5760

#5764

#5765

#5777

#578

#5820

#5821

#5824

#5825

#5825

#583

#5840

#5841

#5842

#5842

#5845

#5849

#5849

#5852

#5859

#5860

#5864

#5869

#5871

#5873

#5874

#5877

#5878

#5881

#5883

#5890

#5893

#5910

#5913

#5923

#5923

#5930

#5931

#5932

#63

#672

#672

#682

#682

#684

#686

#701

#713

#713

#714

#73

#73

#74

#74

#744

#749

#756

#766

#766

#779

#803

#835

#848

#848

#855

#855

#86

#86

#952

#973

#977

#977

#98

#98

#99

#99

0.19

0.6.2

0.6.3

0.6.4

0.7

0.7-rc1

0.8

0.8-rc2

0.8-rc3

0.8-rc4

0.9

1.0

1.0.10

1.0.11

1.0.12

1.0.3

1.0.4

1.0.5

1.0.6

1.0.7

1.0.8

1.0.9

1.1

1.1.10

1.1.11

1.1.12

1.1.2

1.1.3

1.1.4

1.1.5

1.1.6

1.1.7

1.1.8

1.1.9

1.2

1.2.10

1.2.11

1.2.12

1.2.2

1.2.3

1.2.4

1.2.5

1.2.6

1.2.7

1.2.8

1.2.9

1.3

1.3.10

1.3.11

1.3.12

1.3.2

1.3.3

1.3.4

1.3.5

1.3.6

1.3.7

1.3.8

1.3.9

1.4

1.4.10

1.4.11

1.4.12

1.4.2

1.4.3

1.4.4

1.4.5

1.4.6

1.4.7

1.4.8

1.4.9

1.5

1.5.10

1.5.11

1.5.12

1.5.2

1.5.3

1.5.4

1.5.5

1.5.6

1.5.7

1.5.8

1.5.9

1.6

1.6.10

1.6.11

1.6.12

1.6.2

1.6.3

1.6.4

1.6.5

1.6.6

1.6.7

1.6.8

1.6.9

1.7

1.7.1

1.7.10

1.7.11

1.7.12

1.7.2

1.7.3

1.7.4

1.7.5

1.7.6

1.7.7

1.7.8

1.7.9

1.8

1.8.1

1.8.10

1.8.11

1.8.12

1.8.2

1.8.3

1.8.4

1.8.5

1.8.6

1.8.7

1.8.8

1.8.9

1.9

1.9.2

1.9.3

1.9.4

1.9.5

1.9.6

1.9.7

7d01eb79b4 minor fix Bernardo Damele 2013-01-24 00:55:45 +0000
2f4cf61271 Merge pull request #375 from frohoff/fix_non_ascii_header_name Miroslav Stampar 2013-01-23 11:56:51 -0800
94abf1ff29 Merge 218a6a9695 into 3c0c7f776f Chris Frohoff 2013-01-23 11:28:08 -0800
218a6a9695 fixed response header logging for header names with special chars Chris Frohoff 2013-01-23 11:10:25 -0800
3c0c7f776f minor fix Bernardo Damele 2013-01-23 16:57:51 +0000
f848f259a6 upper() -D value for certain DBMSes Bernardo Damele 2013-01-23 16:22:28 +0000
f1534a178a regexp fixes Bernardo Damele 2013-01-23 16:22:01 +0000
9ceb4839ac added test cases for --common-tables across all DBMSes and supported techniques Bernardo Damele 2013-01-23 15:54:58 +0000
012815333c minor bug fix to ignore provided -D when brute-forcing columns/tables names and the DBMS is either Access, Firebird or SQLite Bernardo Damele 2013-01-23 15:52:03 +0000
c83f468a37 Trivial changes Miroslav Stampar 2013-01-23 15:34:20 +0100
35d76f3da5 Adding missing stuff related to the last commit Miroslav Stampar 2013-01-23 14:48:31 +0100
9825e247db Refactoring search module Miroslav Stampar 2013-01-23 14:22:35 +0100
599ad74a32 typo fix Bernardo Damele 2013-01-23 13:05:10 +0000
a3c779839a Merge branch 'master' of github.com:sqlmapproject/sqlmap Bernardo Damele 2013-01-23 13:02:14 +0000
ff160abf10 minor bug fix Bernardo Damele 2013-01-23 13:02:02 +0000
45af22872a fixes #370 (the bug was introduced with commit edb977a74e)# Bernardo Damele 2013-01-23 13:00:58 +0000
232f8d3585 Fix for an Issue #368 Miroslav Stampar 2013-01-23 13:36:17 +0100
7ee07d031a added PostgreSQL stacked queries test case Bernardo Damele 2013-01-23 12:15:20 +0000
314ed22fc3 added preventive cleanup test case Bernardo Damele 2013-01-23 12:12:30 +0000
f4028bd7d2 minor adjustment Bernardo Damele 2013-01-23 02:10:38 +0000
d8a0e7eacb fixes #187 Bernardo Damele 2013-01-23 01:27:01 +0000
f3ff239e62 minor fix Bernardo Damele 2013-01-23 00:21:11 +0000
aafc5b5623 added one just in case test case to check if all params are tested as they should be Bernardo Damele 2013-01-23 00:18:54 +0000
2f1c174879 minor bug fix Bernardo Damele 2013-01-23 00:18:29 +0000
5635776173 proper SQLite 2 library Bernardo Damele 2013-01-22 18:56:25 +0000
91c00939f7 added one more test case Bernardo Damele 2013-01-22 18:28:59 +0000
dea15b5892 notify user if --udf-inject is provided but no stacked queries SQLi is detected Bernardo Damele 2013-01-22 18:28:48 +0000
d6a361f859 Proper implementation for --technique=Q --dbms=Firebird Miroslav Stampar 2013-01-22 16:31:26 +0100
719c7f622b Probable fix for --technique=Q --dbms=Firebird (but also other potential issues with splitting of fields in expressions) Miroslav Stampar 2013-01-22 15:51:06 +0100
2ec828f1cb Fix for an Issue #367 Miroslav Stampar 2013-01-22 14:27:17 +0100
5ea45af1c4 Warming up for Issue #366 and #367 Miroslav Stampar 2013-01-22 14:14:20 +0100
09c02c6c72 Merge branch 'master' of github.com:sqlmapproject/sqlmap Miroslav Stampar 2013-01-22 14:08:31 +0100
15b0ab1b44 Fix for a 'no parameter found' problem when user says N on 'custom injection mark found in POST...' Miroslav Stampar 2013-01-22 14:08:19 +0100
4f081a6a9b typo fixes Bernardo Damele 2013-01-22 13:00:15 +0000
afa9046e74 added Firebird custom enumeration test cases and stricten a few cases to make sure query length calculation function works properly with multi-threading/boolean technique Bernardo Damele 2013-01-22 12:34:11 +0000
061aef57ba missing import Bernardo Damele 2013-01-22 11:25:01 +0000
29a65b5cdc added Firebird search test cases Bernardo Damele 2013-01-22 11:23:48 +0000
59b02539ca More general approach regarding that last commit Miroslav Stampar 2013-01-22 11:34:34 +0100
01f1488f07 Minor patch (annoying trailing spaces for some DBMSes --technique=B --sql-query) Miroslav Stampar 2013-01-22 11:29:51 +0100
b8318efecc Merge branch 'master' of github.com:sqlmapproject/sqlmap Miroslav Stampar 2013-01-22 11:29:15 +0100
bd7fd862b0 forgot import Bernardo Damele 2013-01-22 10:16:18 +0000
edb977a74e bug fix so that if search fails with union/error and blind techniques are available, it falls back to them (like any other enumeration switch) and minor bug fix so that in search mode, the provided table name to search is upped Bernardo Damele 2013-01-22 10:14:35 +0000
11413a0f03 added Firebird search test cases Bernardo Damele 2013-01-22 10:04:17 +0000
e23340f002 added support for search for tables on Firebird (issue #365) Bernardo Damele 2013-01-22 09:53:05 +0000
d2ff9bccbb minor adjustment Bernardo Damele 2013-01-21 21:00:03 +0000
bc5a7e49e9 done with DB2 test cases (issue #312) Bernardo Damele 2013-01-21 20:53:11 +0000
f3cead1729 cosmetics Bernardo Damele 2013-01-21 20:05:25 +0000
e9dea8d394 no need to raise an exception if one enumeration fails Bernardo Damele 2013-01-21 17:11:46 +0000
e558040810 minor fix to previous commit Bernardo Damele 2013-01-21 17:10:56 +0000
d43b04c582 better detection if vulnerable of not for regression test Bernardo Damele 2013-01-21 17:09:35 +0000
3cfa6cd191 minor adjustments Bernardo Damele 2013-01-21 16:41:47 +0000
d5de5306d6 minor fixes following recent enhancements Bernardo Damele 2013-01-21 16:38:31 +0000
472f5e35c2 Removing that space char Miroslav Stampar 2013-01-21 17:35:23 +0100
5d318b4980 Fix for a ISNULL mechanism in Firebird Miroslav Stampar 2013-01-21 17:33:09 +0100
f9d330ec98 Fix for that Firebird column data types issue (tec=EU) Miroslav Stampar 2013-01-21 17:20:46 +0100
99bc4a9005 Generic approach for dealing with that nasty Firebird habit of appending spaces to (tec=EU) varchar casted values Miroslav Stampar 2013-01-21 17:17:20 +0100
b35a0810ef Fix for an Issue #364 Miroslav Stampar 2013-01-21 17:01:52 +0100
457217f2d3 Fix for an Issue #356 Miroslav Stampar 2013-01-21 16:46:48 +0100
1e3f68c7ff Rewriting some query crafting parts (especially those .find(' FROM ')) Miroslav Stampar 2013-01-21 16:15:38 +0100
832d95984c IFNULL-like mechanism now works on SQLite 2 too Miroslav Stampar 2013-01-21 15:04:27 +0100
75bf8528d1 Minor just in case update Miroslav Stampar 2013-01-21 14:50:43 +0100
c55a002f95 Language fix Miroslav Stampar 2013-01-21 13:19:08 +0100
80255433b0 Trivial style update Miroslav Stampar 2013-01-21 13:18:34 +0100
af0db14963 Merge branch 'master' of github.com:sqlmapproject/sqlmap Miroslav Stampar 2013-01-21 13:10:36 +0100
0e86175342 Adding new common function for further refactoring Miroslav Stampar 2013-01-21 11:50:47 +0100
e751556e9b Merge branch 'master' of github.com:sqlmapproject/sqlmap Bernardo Damele 2013-01-21 10:30:54 +0000
eb68da96d6 stylistic update Bernardo Damele 2013-01-21 10:30:49 +0000
65c55a6a49 Fix for escaping single quote character(s) Miroslav Stampar 2013-01-21 11:21:41 +0100
3200134b3b Fix for a regression test #30 test case fail (Firebird inline) Miroslav Stampar 2013-01-21 10:12:54 +0100
aebf2c1350 Slightly better payload for Firebird delay-based SQLi (adding sligtly more delay) Miroslav Stampar 2013-01-20 23:10:58 +0100
069c6acabd Another update for an Issue #362 Miroslav Stampar 2013-01-20 22:47:26 +0100
8f955b6364 Merge branch 'master' of github.com:sqlmapproject/sqlmap Miroslav Stampar 2013-01-20 22:16:47 +0100
a7028af2e9 Patch for an Issue #362 (more work required) Miroslav Stampar 2013-01-20 22:16:34 +0100
fefad3cba1 stylistic improvements Bernardo Damele 2013-01-20 17:40:15 +0000
b4a55a809e Refactoring DBMS string escaping functions Miroslav Stampar 2013-01-20 13:45:58 +0100
3b57fe2924 add test case number to email Bernardo Damele 2013-01-20 11:43:00 +0000
3373e30808 minor fix for a bug introduced with commit 1ad9e26a21 Bernardo Damele 2013-01-20 02:40:40 +0000
845ec006d7 fixed again Bernardo Damele 2013-01-20 01:33:22 +0000
115be9d7b5 minor fixes Bernardo Damele 2013-01-20 01:26:46 +0000
6f61fc04f1 minor bug fix Bernardo Damele 2013-01-20 01:22:25 +0000
d46234e30c minor fix Bernardo Damele 2013-01-20 01:07:00 +0000
7aa3338bd4 add start and end times to log Bernardo Damele 2013-01-19 18:33:09 +0000
ac545548b3 Merge branch 'master' of github.com:sqlmapproject/sqlmap Bernardo Damele 2013-01-19 18:28:30 +0000
bedfe1ba1f syntax fix Bernardo Damele 2013-01-19 18:28:24 +0000
0a4f5d2e51 Merge branch 'master' of github.com:sqlmapproject/sqlmap Miroslav Stampar 2013-01-19 19:08:18 +0100
e9641e30db This last commit was in haste :) Miroslav Stampar 2013-01-19 19:07:38 +0100
6a87dd9225 Minor update (just for consistency with the rest of code) Miroslav Stampar 2013-01-19 19:07:06 +0100
979e108c87 Minor update (just for consistency with the rest of code) Miroslav Stampar 2013-01-19 19:06:51 +0100
f89b25fdb6 Merge branch 'master' of github.com:sqlmapproject/sqlmap Bernardo Damele 2013-01-19 18:04:38 +0000
adf97e630f add possibility to provide a list of web server document root possible directories for web shell upload in --os-cmd and --os-shell for MySQL Bernardo Damele 2013-01-19 18:04:33 +0000
9ce2395405 Minor refactoring Miroslav Stampar 2013-01-19 18:40:44 +0100
3f4c010370 Merge branch 'master' of github.com:sqlmapproject/sqlmap Miroslav Stampar 2013-01-19 18:28:52 +0100
efe26ac3f8 In case that content-length header was not in a desired case ('Content-length') POST request file would fail badly (repeating original content-length header value) Miroslav Stampar 2013-01-19 18:28:37 +0100
6a62292a3f layout adjustment Bernardo Damele 2013-01-19 17:11:16 +0000
bb6b89fe93 Patch for an Issue #360 Miroslav Stampar 2013-01-19 18:06:36 +0100
dcf2dcd03d all we need to debug failed test cases while regression test run.. Bernardo Damele 2013-01-19 17:04:57 +0000
f22fd396ef write the test case name before it is run so if the test case crashes badly, we can trace back what test case it was at a later stage Bernardo Damele 2013-01-19 16:41:19 +0000
47f0d89fc5 sqlmap.org mail server rejects the email, hence use Gmail Bernardo Damele 2013-01-19 16:26:22 +0000
640e0eecc6 improved cron script to report any malfunction by email Bernardo Damele 2013-01-19 16:25:41 +0000
a24eaffacc fixed --columns on DB2, inline with Oracle and other DBMSes now Bernardo Damele 2013-01-19 16:14:25 +0000