PenTest/sqlmap
1
0
Fork 0
mirror of https://github.com/sqlmapproject/sqlmap.git synced 2025-12-06 20:51:31 +00:00
Code Issues Projects Releases Wiki Activity

Minor improvement for international strings in payloads

Browse Source
This commit is contained in:
Miroslav Stampar
2019-05-31 00:17:50 +02:00
parent 257fa3e9e4
commit 9b6d30da0d
3 changed files with 11 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

13
plugins/generic/syntax.py
View File

@@ -7,6 +7,8 @@ See the file 'LICENSE' for copying permission
import re
from lib.core.convert import getBytes
from lib.core.data import conf
from lib.core.exception import SqlmapUndefinedMethod
class Syntax(object):
@@ -23,9 +25,14 @@ class Syntax(object):
if quote:
for item in re.findall(r"'[^']*'+", expression):
_ = item[1:-1]
if _:
retVal = retVal.replace(item, escaper(_))
original = item[1:-1]
if original:
replacement = escaper(original) if not conf.noEscape else original
if replacement != original:
retVal = retVal.replace(item, replacement)
elif len(original) != len(getBytes(original)) and "n'%s'" % original not in retVal:
retVal = retVal.replace("'%s'" % original, "n'%s'" % original)
else:
retVal = escaper(expression)