Skip to main content
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Vote for your favorite vizzies from the Power BI Dataviz World Championship submissions. Vote now!

Reply
deep666
New Member

sol injection

‎12-12-2017 10:34 AM

I tried to exploit a vulnerability that was found with a program that find vulnerable but sqlmap says this message though it's vulnerable to be cause and how I can go over

[WARNING] The GET parameter 'query' does not seem to be injectable
[18:18:41] [CRITICAL] all tested parameters appear to be not injectable. Try to increase '-level' / '- risk' values to perform more tests. Also, you can try to rerun by providing either a valid value for option '--string' (or '--regexp'). If you suspect that there is some kind of protection mechanism involved (eg WAF), maybe you could try again with a '--tamper' option (eg '--tamper = space2comment')

Labels:
  • 1
Message 1 of 3
3,683 Views
0
1 ACCEPTED SOLUTION
markp
Helper I
Helper I

‎12-13-2017 02:39 PM

going from what you have posted it seem that sqlmap is telling you that the tests it ran cant find a way to inject.

Have you tried using the parameters in the logs?

View solution in original post

Message 2 of 3
3,885 Views
0
2 REPLIES 2
markp
Helper I
Helper I

‎12-13-2017 02:39 PM

going from what you have posted it seem that sqlmap is telling you that the tests it ran cant find a way to inject.

Have you tried using the parameters in the logs?

Message 2 of 3
3,886 Views
0
deep666
New Member
In response to markp

‎12-14-2017 03:08 AM

i have used parameters from the documentation and vain the parameter is vulnerable as it is found with owasp zap but can not pass those waf protectors with code can use to be able to pass for filtering

Message 3 of 3
3,658 Views
0

Helpful resources

Announcements
Power BI DataViz World Championships

Power BI Dataviz World Championships

Vote for your favorite vizzies from the Power BI World Championship submissions!

Sticker Challenge 2026 Carousel

Join our Community Sticker Challenge 2026

If you love stickers, then you will definitely want to check out our Community Sticker Challenge!

January Power BI Update Carousel

Power BI Monthly Update - January 2026

Check out the January 2026 Power BI update to learn about new features.

FabCon Atlanta 2026 carousel

FabCon Atlanta 2026

Join us at FabCon Atlanta, March 16-20, for the ultimate Fabric, Power BI, AI and SQL community-led event. Save $200 with code FABCOMM.

View All