more update regarding error based injection support

2025-12-24 00:19:02 +00:00 · 2010-10-19 18:17:34 +00:00
parent b2e0b615f8
commit 4009ef385e
8 changed files with 100 additions and 18 deletions
--- a/lib/core/option.py
+++ b/lib/core/option.py
@@ -1050,6 +1050,7 @@ def __setKnowledgeBaseAttributes():
    kb.dep             = None
    kb.docRoot         = None
    kb.dynamicContent  = []
+    kb.errorTest       = None
    kb.headersCount    = 0
    kb.headersFp       = {}
    kb.hintValue       = None
--- a/lib/core/session.py
+++ b/lib/core/session.py
@@ -196,6 +196,15 @@ def setStacked():
    if condition:
        dataToSessionFile("[%s][%s][%s][Stacked queries][%s]\n" % (conf.url, kb.injPlace, safeFormatString(conf.parameters[kb.injPlace]), kb.stackedTest))

+def setError():
+    condition = (
+                  not kb.resumedQueries or ( kb.resumedQueries.has_key(conf.url) and
+                  not kb.resumedQueries[conf.url].has_key("Error based injection") )
+                )
+
+    if condition:
+        dataToSessionFile("[%s][%s][%s][Error based injection][Yes]\n" % (conf.url, kb.injPlace, safeFormatString(conf.parameters[kb.injPlace])))
+
 def setUnion(comment=None, count=None, position=None, negative=False, falseCond=False):
    """
    @param comment: union comment to save in session file
--- a/lib/core/target.py
+++ b/lib/core/target.py
@@ -282,25 +282,28 @@ def initTargetEnv():
        if conf.cj:
            conf.cj.clear()

-        conf.paramDict    = {}
-        conf.parameters   = {}
-        conf.sessionFile  = None
+        conf.paramDict     = {}
+        conf.parameters    = {}
+        conf.sessionFile   = None

-        kb.authHeader     = None
-        kb.dbms           = None
-        kb.dbmsDetected   = False
-        kb.dbmsVersion    = [ "Unknown" ]
-        kb.htmlFp         = []
-        kb.lastErrorPage  = None
-        kb.injParameter   = None
-        kb.injPlace       = None
-        kb.injType        = None
-        kb.nullConnection = None
-        kb.parenthesis    = None
+        kb.authHeader      = None
+        kb.dbms            = None
+        kb.dbmsDetected    = False
+        kb.dbmsVersion     = [ "Unknown" ]
+        kb.errorTest       = None        
+        kb.htmlFp          = []
+        kb.lastErrorPage   = None
+        kb.injParameter    = None
+        kb.injPlace        = None
+        kb.injType         = None
+        kb.nullConnection  = None
+        kb.parenthesis     = None
        kb.proxyAuthHeader = None
-        kb.unionComment   = ""
-        kb.unionCount     = None
-        kb.unionPosition  = None
+        kb.stackedTest     = None
+        kb.timeTest        = None        
+        kb.unionComment    = ""
+        kb.unionCount      = None
+        kb.unionPosition   = None

 def setupTargetEnv():
    __createTargetDirs()