sqlmapproject/sqlmap
1
1
Fork 0
mirror of https://github.com/sqlmapproject/sqlmap.git synced 2025-09-21 11:32:27 +03:00
Code Issues Packages Projects Releases Wiki Activity

Commit Graph

  • 74ef1e53c7 Minor bug fixes to --privileges for PostgreSQL query (corner case) Bernardo Damele 2011-03-11 14:54:41 +0000
  • 1879a49506 fix for a bug reported by andreoaz@gmail.com Miroslav Stampar 2011-03-10 20:40:12 +0000
  • eb1cda7065 minor refactoring (more consistent) Miroslav Stampar 2011-03-09 12:06:32 +0000
  • 62e3510387 minor refactoring Miroslav Stampar 2011-03-09 11:37:37 +0000
  • 5c97f9a496 improvement of url encoding technique (implemented failsafe routine for shortening too long GET queries) Miroslav Stampar 2011-03-09 09:36:56 +0000
  • 9b2962ff1c now when we don't urlencode whole URI using : and \ as safe chars is not a good idea Miroslav Stampar 2011-03-09 08:56:29 +0000
  • eedd6a990d removing space after , for our payloads Miroslav Stampar 2011-03-08 14:29:22 +0000
  • 3dc31f6273 removing spaces after , in our queries Miroslav Stampar 2011-03-08 14:07:26 +0000
  • 30619c599b minor update regarding encoding (adding few safe chars for e.g. CHR(50)|...) Miroslav Stampar 2011-03-08 11:53:59 +0000
  • 68c7247ee4 bug fix (pgsql drop function requires input arguments - at cleanup() in plugins/generic/misc.py it's already fixed before) Miroslav Stampar 2011-03-08 10:46:23 +0000
  • 99adbbeaa3 los cosmeticados Miroslav Stampar 2011-03-07 22:04:17 +0000
  • cc0306044c adding SVN revision number support for non SVN client platforms Miroslav Stampar 2011-03-07 21:54:30 +0000
  • 8e7c3b4666 update of THANKS file Miroslav Stampar 2011-03-07 21:29:06 +0000
  • 154d947c62 minor update Miroslav Stampar 2011-03-07 10:15:41 +0000
  • 16b286982d fix for a bug reported by nightman (AttributeError: 'list' object has no attribute 'split') Miroslav Stampar 2011-03-07 09:50:43 +0000
  • 7524a0c0cf Proper error message Bernardo Damele 2011-03-04 11:59:09 +0000
  • 8edc3b3302 further update regarding last commit Miroslav Stampar 2011-03-03 10:39:04 +0000
  • bc50387a17 possible fix for a bug reported by Black Zero (UnicodeDecodeError for --forms) Miroslav Stampar 2011-03-03 09:42:50 +0000
  • 3a1f5744be minor update to make counting variable totally independent of the urllib2's self.retried Miroslav Stampar 2011-03-02 10:42:17 +0000
  • a010386a23 finally a proper fix for that annoying recursive bug Miroslav Stampar 2011-03-02 10:29:38 +0000
  • f27f05308a minor update for masking sensitive data in error report (added aCred too) Miroslav Stampar 2011-03-02 10:09:17 +0000
  • ad2e4002ea minor improvement Miroslav Stampar 2011-03-01 10:38:27 +0000
  • 0f3cc153a3 fix for --technique Miroslav Stampar 2011-03-01 09:54:06 +0000
  • 9856cb71de redo of the last commit with comments added Miroslav Stampar 2011-02-28 18:58:05 +0000
  • ade31b2cb0 removal of obsolete item Miroslav Stampar 2011-02-28 18:49:25 +0000
  • da6a87af43 update Bernardo Damele 2011-02-28 16:59:39 +0000
  • 50ba0fa955 More adjustments Bernardo Damele 2011-02-28 16:14:09 +0000
  • 021fce5601 Should be done with the ChangeLog - ready for 0.9. Minor adjustments to user's manual too. Bernardo Damele 2011-02-28 15:23:05 +0000
  • 2bf212ffa9 minor minor update Miroslav Stampar 2011-02-27 20:43:38 +0000
  • 7036190e8e minor improvement of regular expression Miroslav Stampar 2011-02-27 17:58:01 +0000
  • 21041f8b90 further reflective value handling improvement Miroslav Stampar 2011-02-27 17:43:41 +0000
  • b47d3e1da3 Huge update to user's manual. A lot to be done yet. Bernardo Damele 2011-02-27 12:19:32 +0000
  • 6e8ebd35f4 Hide switch -x (XML output format) as it is incomplete and bugged and won't make it for 0.9 stable Bernardo Damele 2011-02-27 12:17:41 +0000
  • 60605b6e7c Major bug fix to make --first and --last apply only to --dump's entries dump phase (in either of the blind SQL injection techs only) Bernardo Damele 2011-02-27 12:14:13 +0000
  • 88faedc0fe fix for a bug reported by -insane- Miroslav Stampar 2011-02-26 17:48:19 +0000
  • 11996ce12e bug fix for international encoded letters Miroslav Stampar 2011-02-25 22:43:01 +0000
  • 63b8156c00 some update (if header key is non-unicode comformant) Miroslav Stampar 2011-02-25 09:43:04 +0000
  • 2bbbc9a41e few updates Miroslav Stampar 2011-02-25 09:35:24 +0000
  • aa88361ab1 incorporation of method for neutralization of reflective values Miroslav Stampar 2011-02-25 09:22:44 +0000
  • 708ddf5608 added protection mechanism against reflected values Miroslav Stampar 2011-02-24 16:52:46 +0000
  • 38dc82e13e If no Accept header field is present, then it is assumed that the client accepts all media types. Miroslav Stampar 2011-02-22 22:26:22 +0000
  • 13f0d5ce00 minor bug fix Miroslav Stampar 2011-02-22 14:51:42 +0000
  • d05bd75068 adding experimental for --group-concat Miroslav Stampar 2011-02-22 14:35:38 +0000
  • 640ba5d744 minor refactoring Miroslav Stampar 2011-02-22 14:19:39 +0000
  • 12ede1e5de minor JIC (just-in-case) update Miroslav Stampar 2011-02-22 13:18:47 +0000
  • 3f8eadf4fe minor refactoring Miroslav Stampar 2011-02-22 13:00:58 +0000
  • dcad5410fe minor refactoring Miroslav Stampar 2011-02-22 12:54:22 +0000
  • 17c39fe231 fix for that non-HTML stuff Miroslav Stampar 2011-02-22 11:32:55 +0000
  • ff9080de48 MaxDB always precalculates values for both TRUE and FALSE, hence we can't trick him to run any "faulty" command (e.g. 1/0). This payload is fairly ok because in case of FALSE --> something=NULL is always NULL Miroslav Stampar 2011-02-21 20:59:34 +0000
  • 08697e60a9 added some Microsoft Access payloads Miroslav Stampar 2011-02-21 20:04:50 +0000
  • 3e8c204121 Major bug fix to properly prepare UNION technique statement for --os-pwn and --is-dba Bernardo Damele 2011-02-21 16:00:56 +0000
  • 90582ed7dc minor change Miroslav Stampar 2011-02-21 11:35:21 +0000
  • 68a95fd1b1 minor update Miroslav Stampar 2011-02-20 22:45:23 +0000
  • aac817935a further improvement of MaxDB support Miroslav Stampar 2011-02-20 22:41:42 +0000
  • a3ba8b6928 --dump now works on MaxDB too Miroslav Stampar 2011-02-20 22:07:12 +0000
  • 70449eb01b minor bug fix Miroslav Stampar 2011-02-20 21:35:28 +0000
  • 345df5968d minor update Miroslav Stampar 2011-02-20 21:27:38 +0000
  • 0e512d3c09 minor update for MaxDB Miroslav Stampar 2011-02-20 21:17:16 +0000
  • 59e666d16e --is-dba (related) update for Sybase Miroslav Stampar 2011-02-20 17:28:06 +0000
  • 4d52f7fc6e minor fix regarding --dump-table on Sybase for --technique=23 Miroslav Stampar 2011-02-20 16:58:01 +0000
  • 67ec691eb1 more updates regarding Sybase Miroslav Stampar 2011-02-20 16:28:48 +0000
  • cc47737c44 minor update Miroslav Stampar 2011-02-20 16:00:13 +0000
  • 823e4351b5 minor change Miroslav Stampar 2011-02-20 12:34:09 +0000
  • 0c57f2af0f minor fix Miroslav Stampar 2011-02-20 12:20:44 +0000
  • 2f9227bcce Sybase update (--passwords) Miroslav Stampar 2011-02-20 12:07:32 +0000
  • 6e1a08a805 Documentation update Bernardo Damele 2011-02-19 21:08:18 +0000
  • 023a80c31c Section explanation change to reflect recent enhancements Bernardo Damele 2011-02-19 21:06:24 +0000
  • 60b05ff49f Reflect new switch name Bernardo Damele 2011-02-19 21:05:15 +0000
  • 8e60acae5d Added support for --scope also in WebScarab logs (-l) Bernardo Damele 2011-02-19 21:03:55 +0000
  • f30dea74f3 more Sybase updates Miroslav Stampar 2011-02-19 18:36:26 +0000
  • b71bb321dd some more Sybase updates Miroslav Stampar 2011-02-19 18:04:27 +0000
  • cec7694aac some progress regarding SYBASE Miroslav Stampar 2011-02-19 14:56:58 +0000
  • e0efe453ab minor update regarding Sybase support Miroslav Stampar 2011-02-19 14:07:08 +0000
  • de7ca5a27c minor update Miroslav Stampar 2011-02-19 09:40:41 +0000
  • 72fc0a0565 minor refactoring Miroslav Stampar 2011-02-19 09:36:57 +0000
  • 5f4ffc9287 update regarding Sybase dumping Miroslav Stampar 2011-02-19 00:36:47 +0000
  • df58bcaf95 minor improvement Miroslav Stampar 2011-02-18 14:27:02 +0000
  • 3badf92ceb not doing "basic" filtering in default cases because of a bug reported by Kazim Miroslav Stampar 2011-02-18 07:38:13 +0000
  • 6cdf08b81c minor fix Miroslav Stampar 2011-02-17 21:51:40 +0000
  • 22cd49a217 --technique can now be something like 123 which includes both techniques 1, 2 and 3 Miroslav Stampar 2011-02-17 21:39:16 +0000
  • 7ebc1ab90a minor cosmetics Miroslav Stampar 2011-02-17 08:59:14 +0000
  • dcb398f916 Test 2 Bernardo Damele 2011-02-16 11:12:15 +0000
  • fc7414db7a Test Bernardo Damele 2011-02-16 11:09:58 +0000
  • 199f14df46 implementation of MySQL GROUP_CONCAT technique Miroslav Stampar 2011-02-15 00:28:27 +0000
  • 808b03fc3e Minor reordering Bernardo Damele 2011-02-14 02:08:11 +0000
  • 2ea828e416 Proper fix for r3307 (file-write on MySQL via UNION query tech) Bernardo Damele 2011-02-13 22:48:01 +0000
  • 417b311475 minor update Miroslav Stampar 2011-02-13 22:02:47 +0000
  • 50d25c3b4d update regarding explicit testing of ua and referer when using -p Miroslav Stampar 2011-02-13 21:58:48 +0000
  • 429ab631fe Minor refactoring Bernardo Damele 2011-02-13 21:25:01 +0000
  • 5fb11fd173 update regarding multiple DBMS payloads Miroslav Stampar 2011-02-13 21:20:21 +0000
  • 45a005737d Minor adjustment so that User-Agent and Referer headers are tests only when --level >= 3 and Cookie is tested only when --level >= 2 Bernardo Damele 2011-02-13 21:08:42 +0000
  • 83d7803ce7 other techniques use dataToStdout for retrieved string, hence this update (also, fixing ugly retrieved: 0 or 1 while doing fingerprinting --flush-session -f --technique=2) Miroslav Stampar 2011-02-12 20:03:28 +0000
  • 9f7d666451 removing --method per request of buawig Miroslav Stampar 2011-02-12 19:50:27 +0000
  • 1cd483f42f one more update Miroslav Stampar 2011-02-12 10:24:09 +0000
  • 25a3a64327 we need this because of one pesky little bug going around (when union is recognized and the dbmses are fingerprinted, for those who don't have proper unescaping false TRUE is recognized in form of retrieved: %27%2B%28SELECT%20CAST...). tested on all major DBMSes. Miroslav Stampar 2011-02-12 10:15:42 +0000
  • 521635c84d quick fix for UA and Referer Miroslav Stampar 2011-02-11 23:36:23 +0000
  • 7253362114 Minor bug fix so that --file-write on MySQL via UNION query now works again Bernardo Damele 2011-02-11 23:35:45 +0000
  • 535eb9f3eb implementation of referer feature Miroslav Stampar 2011-02-11 23:07:03 +0000
  • a6ab24e0b5 just a minor fix to stop nagging with "Do you want to skip test payloads specific for other DBMSes?" if n is pressed Miroslav Stampar 2011-02-10 22:47:43 +0000
  • 5f2fcd1eea minor adjustment regarding "file" switches Miroslav Stampar 2011-02-10 19:55:47 +0000