sqlmapproject/sqlmap
1
1
Fork 0
mirror of https://github.com/sqlmapproject/sqlmap.git synced 2025-07-26 16:10:00 +03:00
Code Issues Packages Projects Releases Wiki Activity

Commit Graph

  • 52e44df86c minor update Miroslav Stampar 2011-01-01 21:11:29 +0000
  • 942cbafba6 minor update Miroslav Stampar 2011-01-01 20:19:55 +0000
  • 26b06bfcfb update (http://dev.mysql.com/doc/refman/5.0/en/server-system-variables.html) Miroslav Stampar 2011-01-01 19:38:51 +0000
  • e4fd8b3f0c (e) finally works as it should Miroslav Stampar 2011-01-01 19:22:44 +0000
  • 0e815177c8 minor update Miroslav Stampar 2011-01-01 19:07:40 +0000
  • ef27fd5ea1 there is a huge problem with urllib2 connections that sockets are left opened causing problems with lots of disposable connections used (like in --threads) (http://mail.python.org/pipermail/python-bugs-list/2007-January/036873.html, http://mail.python.org/pipermail/python-bugs-list/2007-January/036873.html) Miroslav Stampar 2011-01-01 15:20:29 +0000
  • 7ea3d060f6 some fixes/updates here and there Miroslav Stampar 2011-01-01 12:41:51 +0000
  • 15e6911fd8 fix for a bug reported by ragos@joker.ms (AttributeError: 'NoneType' object has no attribute 'write') Miroslav Stampar 2011-01-01 12:23:02 +0000
  • 91f665aaaa bug fix for Ctrl+C Miroslav Stampar 2010-12-31 15:00:19 +0000
  • 076560f59f bug fix Miroslav Stampar 2010-12-31 12:58:27 +0000
  • 5db8ebbfa9 update of mysql comment versions Miroslav Stampar 2010-12-31 12:42:12 +0000
  • 40e3489099 minor update Miroslav Stampar 2010-12-31 12:27:57 +0000
  • ce19b0c431 optimization of comment checking in MySQL Miroslav Stampar 2010-12-31 12:21:02 +0000
  • 281d124fa6 minor bug fix Miroslav Stampar 2010-12-31 12:04:39 +0000
  • 42e7b1b3a7 bug fix Miroslav Stampar 2010-12-30 22:40:37 +0000
  • 20e3a6d72f fix/refactor/cosmetics (references: http://www.postgresql.org/docs/6.4/static/release.htm,http://www.postgresql.org/docs/8.2/static/functions-datetime.html#FUNCTIONS-DATETIME-TABLE,http://www.postgresql.org/docs/8.3/static/release-8-3.html) Miroslav Stampar 2010-12-30 21:53:34 +0000
  • 7f4acaf6f9 now comment injection fingerprint works with all techniques Miroslav Stampar 2010-12-30 21:24:26 +0000
  • 6f17e84e19 minor fix Miroslav Stampar 2010-12-30 08:29:20 +0000
  • c3065f6ecc minor fix Miroslav Stampar 2010-12-29 20:38:56 +0000
  • 2476c1516d minor fix Miroslav Stampar 2010-12-29 20:26:36 +0000
  • 613242e298 bug fix (dynamic markings were not restored in program rerun which potentially led to no data retrieved) Miroslav Stampar 2010-12-29 19:48:19 +0000
  • 8f32c740ff code refactoring Miroslav Stampar 2010-12-29 19:39:32 +0000
  • 6700cabc36 minor optimization Miroslav Stampar 2010-12-29 19:01:29 +0000
  • d1f5c1d7b7 now when we "decode page" based on a charset, sanitizeAsciiString only brings unneeded filtering Miroslav Stampar 2010-12-29 15:10:42 +0000
  • 79e97824ef adding user names to the attack dictionary Miroslav Stampar 2010-12-29 00:37:53 +0000
  • 93838fb155 "patch" for a problem reported by black zero (v = self._sslobj.write(data)...UnicodeError) Miroslav Stampar 2010-12-28 14:40:34 +0000
  • 96c3ffd3d7 changing risk level to 0 - lots of MySQL databases around have information_schema unreadable, thus disabling first AND based error payload Miroslav Stampar 2010-12-27 19:02:13 +0000
  • c0423761e8 minor update Miroslav Stampar 2010-12-27 18:27:42 +0000
  • a77b186aca minor fix Miroslav Stampar 2010-12-27 16:55:27 +0000
  • 5015f04826 minor update Miroslav Stampar 2010-12-27 16:36:05 +0000
  • c8f8dbf0a7 minor update Miroslav Stampar 2010-12-27 15:39:27 +0000
  • 9c1676bdfa minor cosmetics Miroslav Stampar 2010-12-27 14:44:00 +0000
  • 9fb0e0fc85 resume of brute forced data is now available Miroslav Stampar 2010-12-27 14:17:20 +0000
  • c7a160bf72 minor update (users want this to see) Miroslav Stampar 2010-12-27 12:00:54 +0000
  • 3d23f226ae minor update Miroslav Stampar 2010-12-27 11:47:50 +0000
  • 68462466f2 minor fix for a bug reported by shaohua pan (argument of type 'NoneType' is not iterable) Miroslav Stampar 2010-12-27 11:36:36 +0000
  • 51a492e17d pretty important commit (now dumped tables are prone to dictionary attack) Miroslav Stampar 2010-12-27 10:56:28 +0000
  • c8d5a6b980 update Miroslav Stampar 2010-12-27 00:41:16 +0000
  • 269d6bde24 this one is pretty complicated (authentication handler tries to call keep alive module, while keep alive module tries to call authentication handler, leading to an infinite recursion) Miroslav Stampar 2010-12-27 00:14:29 +0000
  • 89c2640d23 basic --search now works with MS Access Miroslav Stampar 2010-12-26 23:50:16 +0000
  • f2373121d0 noticed little DoS behavior and lots of connections in netstat (best way to deal with zombie connections is to explicitly close them if not needed any more) Miroslav Stampar 2010-12-26 14:36:51 +0000
  • c4d6a367e9 this way order given in -C is preserved Miroslav Stampar 2010-12-26 14:11:42 +0000
  • c93f2a703d minor update Miroslav Stampar 2010-12-26 14:02:16 +0000
  • ceeb6374e8 bug fix (TypeError: object of type 'NoneType' has no len()) Miroslav Stampar 2010-12-26 13:27:24 +0000
  • 569e060aab important improvement Miroslav Stampar 2010-12-26 13:20:52 +0000
  • fcd01b3018 minor update Miroslav Stampar 2010-12-26 11:24:41 +0000
  • a555d1ad68 minor improvement Miroslav Stampar 2010-12-26 11:15:02 +0000
  • 22ce464efc minor update with local names Miroslav Stampar 2010-12-26 10:16:00 +0000
  • 320a6f9efb minor minor update Miroslav Stampar 2010-12-26 09:55:33 +0000
  • 17d74fc83c cosmeticado Miroslav Stampar 2010-12-26 09:53:40 +0000
  • cd337d9f39 minor fix Miroslav Stampar 2010-12-26 09:46:09 +0000
  • eaf4b93856 minor update Miroslav Stampar 2010-12-26 09:40:40 +0000
  • 562a6440d1 fix for a bug reported by nightman (same as http://bugs.python.org/issue8797) Miroslav Stampar 2010-12-26 09:33:04 +0000
  • 6c72e41972 minor fix/update Miroslav Stampar 2010-12-26 02:19:10 +0000
  • e41acb6fc2 further ms access improvements Miroslav Stampar 2010-12-26 02:13:56 +0000
  • 2c8115eed9 further improvement for ms access table dumping Miroslav Stampar 2010-12-26 01:04:30 +0000
  • 64523212a4 added site:cn Miroslav Stampar 2010-12-26 00:06:47 +0000
  • 5249762794 update Miroslav Stampar 2010-12-25 16:46:33 +0000
  • f85bb96221 columns updated with localized items Miroslav Stampar 2010-12-25 16:26:05 +0000
  • 561121b536 major update adding new table names (based on site:? localization) Miroslav Stampar 2010-12-25 15:15:03 +0000
  • fb099615e2 minor update Miroslav Stampar 2010-12-25 11:16:35 +0000
  • c5c4aae3d5 minor update (to prevent adding too much items) Miroslav Stampar 2010-12-25 10:42:36 +0000
  • b472b96f92 bug fix, refactoring and improved extractErrorMessage capabilities Miroslav Stampar 2010-12-25 10:16:20 +0000
  • ea7ba19f6b minor update Miroslav Stampar 2010-12-25 09:43:14 +0000
  • 272476773f getPageTextWordsSet on tableExists is pretty powerful stuff Miroslav Stampar 2010-12-25 09:37:33 +0000
  • 9853c1ec7f fix for a bug reported by alessio.dallapiazza@gmail.com (AttributeError: users) Miroslav Stampar 2010-12-25 09:13:57 +0000
  • 6845d402fa well, here and there, merry Christmas to all :) Miroslav Stampar 2010-12-24 20:17:53 +0000
  • 706d8e0b88 development update (basic ms access dumping implemented) Miroslav Stampar 2010-12-24 19:53:11 +0000
  • 2d115e0350 one more fix Miroslav Stampar 2010-12-24 18:44:13 +0000
  • edcf1a0872 few bug fixes Miroslav Stampar 2010-12-24 18:40:48 +0000
  • 96a06351a1 minor fix (in testing phase raise404 should be set to False) Miroslav Stampar 2010-12-24 12:36:00 +0000
  • 2c23a59ba5 fix for one of those more complex bugs (comparison was returning None while original page and/or page template were already had already DBMS error inside) Miroslav Stampar 2010-12-24 12:13:48 +0000
  • aab14fa2d3 minor refactoring/cosmetics Miroslav Stampar 2010-12-24 11:06:57 +0000
  • 23dc408901 prioritization of tests based on DBMS error messages and some comments in common.py Miroslav Stampar 2010-12-24 10:55:41 +0000
  • a09716a701 minor update Miroslav Stampar 2010-12-24 10:07:56 +0000
  • d9f08e4aa3 randomization of user agents Miroslav Stampar 2010-12-24 10:04:27 +0000
  • d5eebb1cbf fix for a fundamentally bad presumtion (ratio should be > 0.6 in stable pages), especially today when we have stuff like where=2; also, just imagine 500s which could just say something like FALSE, while on ratio level it would be far below 0.6 Miroslav Stampar 2010-12-24 09:49:19 +0000
  • cb17e61f35 bug fix (UnicodeDecodeError: 'ascii' codec can't decode byte 0xa9 in position 959) Miroslav Stampar 2010-12-24 02:54:26 +0000
  • 3043ed095a bug fix (those two regexes where too generic making false MS ACCESS positives here and there) Miroslav Stampar 2010-12-24 00:11:10 +0000
  • 8470de7b76 bug fix for boolean proxy when using time based payloads Miroslav Stampar 2010-12-23 23:46:08 +0000
  • 7f7fb93155 cosmetics Miroslav Stampar 2010-12-23 18:44:18 +0000
  • 017ea9e686 update Miroslav Stampar 2010-12-23 14:06:22 +0000
  • 73f33c1999 bug fix of re-introduced bug (in multiple target mode sites with similar URI weren't skipped) Miroslav Stampar 2010-12-23 11:28:13 +0000
  • 5a0aef0f33 fix for a case: Microsoft OLE DB Provider for ODBC Drivers error '80040e14' [MySQL][ODBC 3.51 Driver][mysqld-5.1.31-community] - it was wrongly error message recognized as MS SQL Server Miroslav Stampar 2010-12-23 09:53:13 +0000
  • 8fc60215ed lol. this was a pesky bug. heuristic wasn't working on one mssql test site and i couldn't find why. at end the problem was that when the HTTP code was raised (like 500) no parseResponse was called. Miroslav Stampar 2010-12-22 19:12:46 +0000
  • 7c06dbffc3 bug fix (AttributeError: 'unicode' object has no attribute 'sort') Miroslav Stampar 2010-12-22 18:55:50 +0000
  • c1f2534e9a More bug fixes to properly distinguish between full inband and single-entry inband sql injections Bernardo Damele 2010-12-22 15:47:52 +0000
  • b3da473840 Minor bug fix when --dbs has only one DB name Bernardo Damele 2010-12-22 14:29:57 +0000
  • c9ab8ae60e Bug fix to properly identify if current user is DBA (--is-dba) on MySQL Bernardo Damele 2010-12-22 14:06:01 +0000
  • 250608660d Minor bug fix to always show HTTP request and response when verbose is set accordingly to 4, 5 or 6 regardless of the HTTP response code (error or not) Bernardo Damele 2010-12-22 13:41:36 +0000
  • 5228f336da Minor fix for ctrl+c during detection phase Bernardo Damele 2010-12-22 13:15:44 +0000
  • 08c88495d0 removed that ugly hack Miroslav Stampar 2010-12-22 13:09:04 +0000
  • 8212b7b745 bug fix Miroslav Stampar 2010-12-22 12:16:04 +0000
  • c89021f0bb some fixes Miroslav Stampar 2010-12-22 11:46:18 +0000
  • 5be9c04e44 update regarding Sybase syntax Miroslav Stampar 2010-12-22 10:39:56 +0000
  • 5d25da5135 better way to handle this one Miroslav Stampar 2010-12-22 00:51:20 +0000
  • 306501363c fuck, sorry, 0 was OK (STRCMP() returns 0 if the strings are the same) Miroslav Stampar 2010-12-22 00:41:38 +0000
  • d6e6afd6f2 minor fix ("To clarify a bit: STRCMP() is case-insensitive as of MySQL 4.0." - http://bugs.mysql.com/bug.php?id=2102) Miroslav Stampar 2010-12-22 00:38:54 +0000
  • 6f2ce15478 minor refactoring Miroslav Stampar 2010-12-22 00:27:21 +0000
  • cb61401c18 bug fix (http://dev.mysql.com/doc/refman/5.0/es/news-5-0-11.html - "Added support of where clause for queries with FROM DUAL") Miroslav Stampar 2010-12-22 00:20:56 +0000