[TOOL] SQLIBF - SQL Injection Bruteforcer
- From: SecuriTeam <support@xxxxxxxxxxxxxx>
- Date: 27 Apr 2006 13:41:56 +0200
The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com
- - promotion
The SecuriTeam alerts list - Free, Accurate, Independent.
Get your security news from a reliable source.
http://www.securiteam.com/mailinglist.html
- - - - - - - - -
SQLIBF - SQL Injection Bruteforcer
------------------------------------------------------------------------
SUMMARY
DETAILS
SQLibf is a SQL Injection Brute-forcer tool for automatizing the work of
detecting and exploiting SQL Injection vulnerabilities. This is not an
easy or standalone application. It must be used by a web application
auditor for helping and complementing his findings. SQLibf can work with
both Visible and Blind SQL Injection vulnerabilities. It works by doing
simple logic SQL operations to determine the level of exposure of the
vulnerable application.
To download the tool: <http://www.open-labs.org/sqlibf16beta2.tar.gz>
http://www.open-labs.org/sqlibf16beta2.tar.gz
ADDITIONAL INFORMATION
The information has been provided by <mailto:rpinuaga@xxxxxxxxxx> Ramon
Pinuaga Cascales.
To keep updated with the tool visit the project's homepage at:
<http://www.open-labs.org/> http://www.open-labs.org/
========================================
This bulletin is sent to members of the SecuriTeam mailing list.
To unsubscribe from the list, send mail with an empty subject line and body to: list-unsubscribe@xxxxxxxxxxxxxx
In order to subscribe to the mailing list, simply forward this email to: list-subscribe@xxxxxxxxxxxxxx
====================
====================
DISCLAIMER:
The information in this bulletin is provided "AS IS" without warranty of any kind.
In no event shall we be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages.
- Prev by Date: [TOOL] Metoscan - HTTP method scanner
- Next by Date: [NEWS] OpenTTD Multiple DoS
- Previous by thread: [TOOL] Metoscan - HTTP method scanner
- Next by thread: [NEWS] OpenTTD Multiple DoS
- Index(es):
Relevant Pages
- [UNIX] Protector System Multiple Vulnerabilities
... The following security advisory is sent to the securiteam mailing list, and can be
found at the SecuriTeam web site: http://www.securiteam.com ... Several classes of vulnerabilities
have been found in Protector. ... cross-site scripting and SQL injection attacks.
... (Securiteam) - [UNIX] PhotoPost PHP Pro Multiple Vulnerabilities
... The following security advisory is sent to the securiteam mailing list, and can be
found at the SecuriTeam web site: http://www.securiteam.com ... PhotoPost PHP Pro suffers
from multiple SQL injection, ... There are plenty of SQL injection vulnerabilities
in PhotoPost PHP Pro. ... (Securiteam) - [REVS] Advanced Topics on SQL Injection Protection
... The following security advisory is sent to the securiteam mailing list, and can be
found at the SecuriTeam web site: http://www.securiteam.com ... SQL injection is now one
of the most common attacks in the Internet. ... Static query statement - Development Phrase
... Some programmers may think escaping apostrophe with two apostrophes (and ...
(Securiteam) - [UNIX] PHPNuke Multiple Vulnerabilities in Search Module
... The following security advisory is sent to the securiteam mailing list, and can be
found at the SecuriTeam web site: http://www.securiteam.com ... cross-site scripting and
SQL injections located throughout the ... The vulnerability exists in the ... The
first SQL injection vulnerability is a non-critical one in the ... (Securiteam) - [UNIX] paFileDB SQL Injection
... The following security advisory is sent to the securiteam mailing list, and can be
found at the SecuriTeam web site: http://www.securiteam.com ... " <http://www.phparena.net/pafiledb.php>
paFileDB is designed to allow web ... The paFileDB product has been found to contain an SQL
Injection ... (Securiteam)
