PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-25 00:49:01 +00:00
Code Issues Projects Releases Wiki Activity

Fix a few little formatting errors in SQLInject.nse.

Browse Source
This commit is contained in:
david
2008-11-03 21:37:08 +00:00
parent e01984b2f5
commit 9d1b588e4b
1 changed files with 4 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
scripts/SQLInject.nse
View File

@@ -5,16 +5,16 @@ injection attack.
The script spiders an HTTP server looking for URLs containing queries. It then
proceeds to combine crafted SQL commands with susceptible URLs in order to
obtain errors. The errors are analysed to see if the url is vulnerable to
obtain errors. The errors are analysed to see if the URL is vulnerable to
attack. This uses the most basic form of SQL injection but anything more
complication is more suited to a stand alone tool. Both meta and HTTP redirects
complication is more suited to a standalone tool. Both meta and HTTP redirects
are supported.
It is not advisable to run this against unknown hosts.
We may not have access to the servers true hostname. This means we cannot
We may not have access to the server's true hostname. This means we cannot
access virtually hosted sites and cannot follow absolute links when the
hostname is different from the resolved ip address
hostname is different from the resolved IP address
]]
require('url')