Adds two common error strings when detecting MySQL injections. Closes #1191

2025-12-18 05:29:02 +00:00 · 2018-05-28 03:35:49 +00:00
parent fc3062b674
commit 711d2107e6
2 changed files with 5 additions and 0 deletions
--- a/3
+++ b/3
@@ -1,5 +1,8 @@
 #Nmap Changelog ($Id$); -*-text-*-

+o [NSE][GH#1191] Add two common error strings that improve MySQL detection
+  by the script http-sql-injection. [Robert Taylor, Paulino Calderon]
+
 o [NSE][GH#1220] Fix bug in http-vuln-cve2006-3392 that prevented the script to
  generate the vulnerability report correctly. [rewardone]

--- a/nselib/data/http-sql-errors.lst
+++ b/nselib/data/http-sql-errors.lst
@@ -108,3 +108,5 @@ server object error
 supplied argument is not a valid MySQL result resource
 session_start%(%)
 unexpected end of SQL command
+You have an error in your SQL syntax
+check the manual that corresponds to your MySQL server version for the right syntax