PenTest/sqlmap
1
0
Fork 0
mirror of https://github.com/sqlmapproject/sqlmap.git synced 2025-12-07 13:11:29 +00:00
Code Issues Projects Releases Wiki Activity

Proper form for excluded case in escaper

Browse Source
This commit is contained in:
Miroslav Stampar
2016-10-01 21:15:35 +02:00
parent d8dd37510c
commit 54ca69fa90
3 changed files with 6 additions and 19 deletions
Download Patch File Download Diff File Expand all files Collapse all files

15
plugins/dbms/informix/syntax.py
View File

@@ -5,9 +5,6 @@ Copyright (c) 2006-2016 sqlmap developers (http://sqlmap.org/)
See the file 'doc/COPYING' for copying permission
"""
import re
from lib.core.common import randomStr
from plugins.generic.syntax import Syntax as GenericSyntax
class Syntax(GenericSyntax):
@@ -24,14 +21,4 @@ class Syntax(GenericSyntax):
def escaper(value):
return "||".join("CHR(%d)" % ord(_) for _ in value)
excluded = {}
for _ in re.findall(r"DBINFO\([^)]+\)", expression):
excluded[_] = randomStr()
expression = expression.replace(_, excluded[_])
retVal = Syntax._escape(expression, quote, escaper)
for _ in excluded.items():
retVal = retVal.replace(_[1], _[0])
return retVal
return Syntax._escape(expression, quote, escaper)