Closed James-Lu-none closed 4 months ago
maybe it is case-sensitive. try to use -D PUBLIC
. if that works, i can easily upper case it automatically
maybe it is case-sensitive. try to use -D PUBLIC. if that works, i can easily upper case it automatically
yeah i tried that, it still shows the same thing.
do you have some errors? can you run with -t traffic.txt
and report back?
Describe the bug i was able to get the database type = "HSQLDB" and database name = "PUBLIC" by using --current-db, but when i trying to retrive the table/column names further using common-tables/columns, it says that no table(s)/column(s) found. i have cheated and checked the source code to get the table/column names and comfirmed so of the names that webgoat are using is in the provided common-table(s)/column(s).
To Reproduce
Expected behavior i followed a guide from here: https://pvxs.medium.com/webgoat-sql-injection-advanced-5-20ce63bf4aec and i expect to get some same or similar results he got.
Screenshots target table (from source code) unable to get table names unable to get column names
Running environment:
Target details:
Additional context Add any other context about the problem here.