PenTest/sqlmap
1
0
Fork 0
mirror of https://github.com/sqlmapproject/sqlmap.git synced 2025-12-10 09:49:06 +00:00
Code Issues Projects Releases Wiki Activity

Minor update for #2731 (--smoke-test failed)

Browse Source
This commit is contained in:
Miroslav Stampar
2017-10-04 14:02:47 +02:00
parent d2af0c7a1f
commit 09ddb3bd8b
3 changed files with 5 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
tamper/charunicodeescape.py
View File

@@ -21,8 +21,8 @@ def tamper(payload, **kwargs):
Notes:
* Useful to bypass weak filtering and/or WAFs in JSON contexes
>>> tamper('SELECT FIELD%20FROM TABLE')
'\u0053\u0045\u004C\u0045\u0043\u0054\u0020\u0046\u0049\u0045\u004C\u0044\u0020\u0046\u0052\u004F\u004D\u0020\u0054\u0041\u0042\u004C\u0045'
>>> tamper('SELECT FIELD FROM TABLE')
'\\\\u0053\\\\u0045\\\\u004C\\\\u0045\\\\u0043\\\\u0054\\\\u0020\\\\u0046\\\\u0049\\\\u0045\\\\u004C\\\\u0044\\\\u0020\\\\u0046\\\\u0052\\\\u004F\\\\u004D\\\\u0020\\\\u0054\\\\u0041\\\\u0042\\\\u004C\\\\u0045'
"""
retVal = payload