sqlmap 0.6.3-rc4: minor enhancement to be able to specify extra HTTP headers

by providing option --headers. By default Accept, Accept-Language and Accept-Charset headers are set. Added support to get the injection payload prefix and postfix from user. Minor bug fix to exclude image files when parsing (-l) proxies log files. Minor code adjustments. Updated documentation.
2025-12-06 12:41:30 +00:00 · 2008-12-08 21:24:24 +00:00
parent 15542d2772
commit 9dbad512f1
15 changed files with 365 additions and 232 deletions
--- a/lib/core/agent.py
+++ b/lib/core/agent.py
@@ -91,17 +91,20 @@ class Agent:

        query = ""

-        if kb.injType == "numeric":
-            pass
-        elif kb.injType in ( "stringsingle", "likesingle" ):
-            query = "'"
-        elif kb.injType in ( "stringdouble", "likedouble" ):
-            query = "\""
+        if conf.prefix:
+            query = conf.prefix
        else:
-            raise sqlmapNoneDataException, "unsupported injection type"
+            if kb.injType == "numeric":
+                pass
+            elif kb.injType in ( "stringsingle", "likesingle" ):
+                query = "'"
+            elif kb.injType in ( "stringdouble", "likedouble" ):
+                query = "\""
+            else:
+                raise sqlmapNoneDataException, "unsupported injection type"

-        if kb.parenthesis not in ( None, 0 ):
-            query += "%s " % (")" * kb.parenthesis)
+            if kb.parenthesis not in ( None, 0 ):
+                query += "%s " % (")" * kb.parenthesis)

        query += string

@@ -118,25 +121,28 @@ class Agent:
        randStr = randomStr()

        if comment:
-            string += "%s" % comment
+            string += comment

-        if kb.parenthesis != None:
-            string += " AND %s" % ("(" * kb.parenthesis)
+        if conf.postfix:
+            string += " %s" % conf.postfix
        else:
-            raise sqlmapNoneDataException, "unable to get the number of parenthesis"
+            if kb.parenthesis != None:
+                string += " AND %s" % ("(" * kb.parenthesis)
+            else:
+                raise sqlmapNoneDataException, "unable to get the number of parenthesis"

-        if kb.injType == "numeric":
-            string += "%d=%d" % (randInt, randInt)
-        elif kb.injType == "stringsingle":
-            string += "'%s'='%s" % (randStr, randStr)
-        elif kb.injType == "likesingle":
-            string += "'%s' LIKE '%s" % (randStr, randStr)
-        elif kb.injType == "stringdouble":
-            string += "\"%s\"=\"%s" % (randStr, randStr)
-        elif kb.injType == "likedouble":
-            string += "\"%s\" LIKE \"%s" % (randStr, randStr)
-        else:
-            raise sqlmapNoneDataException, "unsupported injection type"
+            if kb.injType == "numeric":
+                string += "%d=%d" % (randInt, randInt)
+            elif kb.injType == "stringsingle":
+                string += "'%s'='%s" % (randStr, randStr)
+            elif kb.injType == "likesingle":
+                string += "'%s' LIKE '%s" % (randStr, randStr)
+            elif kb.injType == "stringdouble":
+                string += "\"%s\"=\"%s" % (randStr, randStr)
+            elif kb.injType == "likedouble":
+                string += "\"%s\" LIKE \"%s" % (randStr, randStr)
+            else:
+                raise sqlmapNoneDataException, "unsupported injection type"

        return string