We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
xray_1.9.11 1.使用AWVS扫描出了延时注入。但是xray没有。 0'XOR(if(now()=sysdate(),sleep(6),0))XOR'Z 这个是awvs的payload。
2.在https://portswigger.net/web-security/sql-injection/blind/lab-conditional-errors#靶场中。 已经配置了detect_sqli_in_cookie: true 但是通过代理的流量来看 xray并未对cookie内参数进行扫描。 QAQ我重新起了几次后 对cookie参数有扫描了。但是没注入未扫出来。
3.这种协议提交参数的sql注入似乎未识别到。 POST包
The text was updated successfully, but these errors were encountered:
No branches or pull requests
xray_1.9.11
1.使用AWVS扫描出了延时注入。但是xray没有。
0'XOR(if(now()=sysdate(),sleep(6),0))XOR'Z
这个是awvs的payload。
2.在https://portswigger.net/web-security/sql-injection/blind/lab-conditional-errors#靶场中。
已经配置了detect_sqli_in_cookie: true
但是通过代理的流量来看 xray并未对cookie内参数进行扫描。
QAQ我重新起了几次后 对cookie参数有扫描了。但是没注入未扫出来。
3.这种协议提交参数的sql注入似乎未识别到。
POST包
The text was updated successfully, but these errors were encountered: