minor refactoring before a huge bug fix reported by Ahmed Shawky (we are falsely urlencoding ORIGINAL part of the injection payload)

2025-12-06 12:41:30 +00:00 · 2011-01-27 16:55:58 +00:00
parent 539168dcca
commit 03413bd5e0
2 changed files with 6 additions and 2 deletions
--- a/lib/core/settings.py
+++ b/lib/core/settings.py
@@ -13,6 +13,7 @@ import subprocess
 import sys

 from lib.core.enums import DBMS
+from lib.core.enums import PLACE
 from lib.core.revision import getRevisionNumber

 # sqlmap version and site
@@ -204,3 +205,6 @@ WEBSCARAB_SPLITTER = "### Conversation"

 # Splitter used between requests in BURP log files
 BURP_SPLITTER = "======================================================"
+
+# Do the url-encoding based on parameter place
+URL_ENCODE_PAYLOAD = { PLACE.GET: True, PLACE.POST: True, PLACE.COOKIE: False, PLACE.UA: True, PLACE.URI: False }