Battering Ram again takes a single word list, but then inserts the same payload into every position on each run.
For example, assume a three-element word list containing one, two, and three, and the body date foo=position1&bar=position2. Then if position1 and position2 are both defined as positions, Battering Ram will produce the following sequence of attempts:
foo=one&bar=onefoo=two&bar=twofoo=three&bar=three
It’s a little mysterious to me why this attack is useful.