Got rid of unreliable 'ORDER BY' technique to detect UNION query SQL injection, consequently switch --union-tech has gone now.

Minor code refactoring too.
2026-01-21 05:39:16 +00:00 · 2010-11-29 17:18:38 +00:00
parent e9291932e5
commit 8b9706656e
6 changed files with 25 additions and 79 deletions
--- a/sqlmap.conf
+++ b/sqlmap.conf
@@ -255,13 +255,6 @@ timeSec = 5
 # Valid: True or False
 unionTest = False

-# Technique to test for UNION query SQL injection
-# The possible techniques are by NULL bruteforcing (bf) or by ORDER BY
-# clause (ob)
-# Valid: char, OrderBy
-# Default: char
-uTech = char
-
 # Range of columns to test for
 # Valid: range of integers
 # Default: 1-20