Minor update related to the last (error results in OR boolean-based blind should not be the same as True to be able to do proper comparison)

2025-12-06 12:41:30 +00:00 · 2016-01-14 13:40:50 +01:00
parent c7ef9429ae
commit bdcf3fffba
1 changed files with 10 additions and 1 deletions
--- a/lib/controller/checks.py
+++ b/lib/controller/checks.py
@@ -446,10 +446,19 @@ def checkSqlInjection(place, parameter, value):
                            truePage = threadData.lastComparisonPage or ""

                            if trueResult and not(truePage == falsePage and not kb.nullConnection):
+                                # Perform the test's False request
                                falseResult = Request.queryPage(genCmpPayload(), place, raise404=False)

-                                # Perform the test's False request
                                if not falseResult:
+                                    if kb.negativeLogic:
+                                        boundPayload = agent.prefixQuery(kb.data.randomStr, prefix, where, clause)
+                                        boundPayload = agent.suffixQuery(boundPayload, comment, suffix, where)
+                                        errorPayload = agent.payload(place, parameter, newValue=boundPayload, where=where)
+
+                                        errorResult = Request.queryPage(errorPayload, place, raise404=False)
+                                        if errorResult:
+                                            continue
+
                                    infoMsg = "%s parameter '%s' seems to be '%s' injectable " % (paramType, parameter, title)
                                    logger.info(infoMsg)