How do i add a user name and a password to sqlmap?

php sql mysqli sql-injection sqlmap
jdcaba picture jdcaba · Apr 16, 2017 · Viewed 10k times · Source

I was running a SQLInjection with sqlmap. My page has an error of sql but the error shows up once you logged in your account(Example: page.com/login.php and when you log you go to page.com/index.php?id=1 and here the sql error is evident). When i run sqlmap on page.com/index.php?id=1 the page redirects the sqlmap to page.com/login.php.It's possible to provide sqlmap a user and a password to make sqlmap log in the account and then perform the SQLInjection? Thank you for your time

Answer

Halil picture Halil · Nov 11, 2017

You can use cookie parameter with sqlmap. First, log into your account and learn your cookie information then you can use --cookie parameter. For example when login my account, my cookie is PHPSESSIONID=ajksdgadhakjsdhak. After that, you could do just like command below in your terminal.

sqlmap.py --url http://page.com/index.php?id=1 --cookie='PHPSESSIONID=ajksdgadhakjsdhak' --dbs

Related questions

What does bind_param accomplish?

I'm learning about avoiding SQL injections and I'm a bit confused. When using bind_param, I don't understand the purpose. On the manual page, I found this example: $stmt = mysqli_prepare($link, "INSERT INTO CountryLanguage VALUES (?, ?, ?, ?)"); mysqli_stmt_bind_param($…

Read More
Commands out of sync; you can't run this command now

I am trying to execute my PHP code, which calls two MySQL queries via mysqli, and get the error "Commands out of sync; you can't run this command now". Here is the code I am using <?php $con = mysqli_…

Read More
php mysqli prepared statement LIKE

How can I with mysqli make a query with LIKE and get all results? This is my code but it dosn't work: $param = "%{$_POST['user']}%"; $stmt = $db->prepare("SELECT id,Username FROM users WHERE Username LIKE ?"); $stmt->bind_…

Read More