SQLMap Database Penetration Testing

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill explicitly directs extraction and output of dumped records including usernames, passwords, and "Extract Specific Credentials", which requires the LLM to include secret values verbatim in its outputs, creating exfiltration risk.

CRITICAL E006: Malicious code pattern detected in skill scripts.

• Malicious code pattern detected (high risk: 1.00). This content explicitly instructs how to discover and exploit SQL injection vulnerabilities including dumping databases, extracting credentials, obtaining OS shells, reading/uploading files, and using anonymity/tamper techniques—facilitating data exfiltration, credential theft, remote code execution, and system compromise.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly instructs sqlmap to fetch and analyze arbitrary public targets and user-provided request/log/bulk files (see sub-skills/6-advanced-target-options.md and options like -u, -r, -l, -m, -g), meaning untrusted web pages and user-generated HTTP content are ingested and used to drive enumeration, dumping, and follow-on actions.