Major enhancement to make the comparison algorithm work properly also

on url not stables automatically by using the difflib SequenceMatcher object: this changed a lot into the structure of the code, has to be extensively beta-tested! Please, do report bugs on sqlmap-users mailing list if you scout them. Cheers, Bernardo
2025-12-07 05:01:30 +00:00 · 2008-12-20 01:54:08 +00:00
parent 7e8ac16245
commit 8d06975142
8 changed files with 54 additions and 127 deletions
--- a/lib/controller/controller.py
+++ b/lib/controller/controller.py
@@ -175,18 +175,9 @@ def start():

        if not kb.injPlace or not kb.injParameter or not kb.injType:
            if not conf.string and not conf.regexp and not conf.eRegexp:
-                if not checkStability():
-                    errMsg  = "url is not stable, try with --string or "
-                    errMsg += "--regexp options, refer to the user's manual "
-                    errMsg += "paragraph 'Page comparison' for details"
-
-                    if conf.multipleTargets:
-                        errMsg += ", skipping to next url"
-                        logger.warn(errMsg)
-
-                        continue
-                    else:
-                        raise sqlmapConnectionException, errMsg
+                # NOTE: this is not needed anymore, leaving only to display
+                # a warning message to the user in case the page is not stable
+                checkStability()

            for place in conf.parameters.keys():
                if not conf.paramDict.has_key(place):