Project Summary
SQLIer takes an SQL Injection vulnerable URL and attempts to determine all the necessary information to build and exploit an SQL Injection hole by itself, requiring no user interaction at all (unless it can't guess the table/field names correctly). By doing so, SQLIer can build a UNION SELECT query designed to brute force passwords out of the database. This script also does not use quotes in the exploit to operate, meaning it will work for a wider range of sites.
In a Nutshell, SQLIer...
- ...
- ...
- ...
-
...
took an estimated 1 years of effort (COCOMO model)
starting with its first commit in August, 2006
ending with its most recent commit over 11 years ago
BSD 3-clause "New" or "Revised" License
Permitted
Commercial Use
Place Warranty
Modify
Distribute
Forbidden
Use Trademarks
Hold Liable
Required
Include Copyright
Include License
These details are provided for information only. No information here is legal advice and should not be used as such.
This Project has No vulnerabilities Reported Against it
Did You Know...
-
...
Black Duck offers a free trial so you can discover if there are open source vulnerabilities in your code
-
...
data presented on the Open Hub is available through our API
-
...
nearly 1 in 3 companies have no process for identifying, tracking, or remediating known open source vulnerabilities
-
...
you can embed statistics from Open Hub on your site
Code locations have been removed since last analysis
At one point, Open Hub analyzed source code for this project based on code location(s) available at that time. Since then, the code locations have been removed.
Code
Activity
Community
30 Day SummaryNov 10 2013 — Dec 10 2013
|
12 Month SummaryDec 10 2012 — Dec 10 2013
|
