PenTest/sqlmap
1
0
Fork 0
mirror of https://github.com/sqlmapproject/sqlmap.git synced 2025-12-06 04:31:30 +00:00
Code Issues Projects Releases Wiki Activity

minor improvement for URI injections

Browse Source
This commit is contained in:
Miroslav Stampar
2011-09-08 11:13:12 +00:00
parent d434047482
commit 2f4e34f5a0
1 changed files with 3 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
lib/core/agent.py
View File

@@ -80,6 +80,9 @@ class Agent:
if place == PLACE.URI: if place == PLACE.URI:
origValue = origValue.split(URI_INJECTION_MARK_CHAR)[0] origValue = origValue.split(URI_INJECTION_MARK_CHAR)[0]
origValue = origValue[origValue.rfind('/') + 1:] origValue = origValue[origValue.rfind('/') + 1:]
for char in ('?', '=', ':'):
if char in origValue:
origValue = origValue[origValue.rfind(char) + 1:]
if value is None: if value is None:
if where == PAYLOAD.WHERE.ORIGINAL: if where == PAYLOAD.WHERE.ORIGINAL: