Unescaping is renamed to escaping

2025-12-07 13:11:29 +00:00 · 2013-01-18 15:40:37 +01:00
parent c717de9c9d
commit 601eb1e49a
37 changed files with 51 additions and 287 deletions
--- a/plugins/dbms/mssqlserver/init.py
+++ b/plugins/dbms/mssqlserver/init.py
@@ -31,4 +31,4 @@ class MSSQLServerMap(Syntax, Fingerprint, Enumeration, Filesystem, Miscellaneous
        Miscellaneous.__init__(self)
        Takeover.__init__(self)

-    unescaper[DBMS.MSSQL] = Syntax.unescape
+    unescaper[DBMS.MSSQL] = Syntax.escape
--- a/plugins/dbms/mssqlserver/syntax.py
+++ b/plugins/dbms/mssqlserver/syntax.py
@@ -13,7 +13,7 @@ class Syntax(GenericSyntax):
        GenericSyntax.__init__(self)

    @staticmethod
-    def unescape(expression, quote=True):
+    def escape(expression, quote=True):
        if quote:
            while True:
                index = expression.find("'")
@@ -36,27 +36,3 @@ class Syntax(GenericSyntax):
            expression = "+".join("CHAR(%d)" % ord(c) for c in expression)

        return expression
-
-    @staticmethod
-    def escape(expression):
-        while True:
-            index = expression.find("CHAR(")
-            if index == -1:
-                break
-
-            firstIndex = index
-            index = expression[firstIndex:].find(")")
-
-            if index == -1:
-                raise SqlmapSyntaxException("Unenclosed ) in '%s'" % expression)
-
-            lastIndex = firstIndex + index + 1
-            old = expression[firstIndex:lastIndex]
-            oldUpper = old.upper()
-            oldUpper = oldUpper.replace("CHAR(", "").replace(")", "")
-
-            escaped = "'%s'" % chr(int(oldUpper))
-            expression = expression.replace(old, escaped)
-
-        expression = expression.replace("'+'", "")
-        return expression