Patch for an Issue #2690

2025-12-15 20:29:04 +00:00 · 2017-09-08 11:43:10 +02:00
parent 96f80879ff
commit a3249019d9
3 changed files with 5 additions and 5 deletions
--- a/tamper/greatest.py
+++ b/tamper/greatest.py
@@ -36,10 +36,10 @@ def tamper(payload, **kwargs):
    retVal = payload

    if payload:
-        match = re.search(r"(?i)(\b(AND|OR)\b\s+)(?!.*\b(AND|OR)\b)([^>]+?)\s*>\s*([^>#-]+)", payload)
+        match = re.search(r"(?i)(\b(AND|OR)\b\s+)([^>]+?)\s*>\s*(\w+|'[^']+')", payload)

        if match:
-            _ = "%sGREATEST(%s,%s+1)=%s" % (match.group(1), match.group(4), match.group(5), match.group(4))
+            _ = "%sGREATEST(%s,%s+1)=%s" % (match.group(1), match.group(3), match.group(4), match.group(3))
            retVal = retVal.replace(match.group(0), _)

    return retVal