iExploit

Howdy, Stranger!

It looks like you're new here. If you want to get involved, click one of these buttons!

Sign In Apply for Membership

Top Posters

Who's Online (2)

Powered by Vanilla. Made with Bootstrap.
Looking to introduce yourself? Look no further, and click here! We also have IRC! [irc.evilzone.org #iexploit]
Req help with w3af
  • Herro
    Posts: 56
    So ive just started using it recently and theirs some part that id need help with.

    So i scanned a website and found some sql injections vul. so this shows up at the top right.

    SQL injection in a Unknown database was found at: \"http://endacia-online.com/forums/faq.php\", using HTTP method GET. The sent data was: \"q=Spam+or+Eggs%3F&do=search&s=2bf08ea5f2e0a8517e0a0eb353130bdd&titleandtext=1&match=d'z\"0\". The modified parameter was \"match\". This vulnerability was found in the request with id 97.


    So thats where im stuck idk where to go from there.
  • Xin
    Posts: 3,251
    Post the actual URL and il have a look
    Xin
  • Herro
    Posts: 56
    New url posted thanks for your help.
  • Xin
    Posts: 3,251
    Cant find anything, its not normal sqli you will have to do it in post and get requests, ive tried sending a few with no luck
    Xin
Add a Comment