PenTest/sqlmap
1
0
Fork 0
mirror of https://github.com/sqlmapproject/sqlmap.git synced 2025-12-09 14:11:29 +00:00
Code Issues Projects Releases Wiki Activity

minor update (changing form of payload[i+1] with payload[i+1:i+2] which is much safer for not crashing the script with invalid char index)

Browse Source
This commit is contained in:
Miroslav Stampar
2011-07-11 09:22:29 +00:00
parent 7a6bddf811
commit 5014475637
5 changed files with 5 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
tamper/between.py
View File

@@ -57,7 +57,7 @@ def tamper(payload):
elif payload[i] == ">" and not doublequote and not quote:
retVal += " " if i > 0 and not payload[i-1].isspace() else ""
retVal += "NOT BETWEEN 0 AND"
retVal += " " if i < len(payload) - 1 and not payload[i+1].isspace() else ""
retVal += " " if i < len(payload) - 1 and not payload[i+1:i+2].isspace() else ""
continue