From c155c6df84bd5ea6cdd369892e3a2c235412dd8d Mon Sep 17 00:00:00 2001
From: Bernardo Damele <bernardo.damele@gmail.com>
Date: Mon, 7 Jan 2013 23:31:11 +0000
Subject: [PATCH] minor bug fix for user's provided LIMIT'd statement when
 technique is full UNION SQLi

---
 lib/techniques/union/use.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/lib/techniques/union/use.py b/lib/techniques/union/use.py
index 58cdbb162..c50164b65 100644
--- a/lib/techniques/union/use.py
+++ b/lib/techniques/union/use.py
@@ -175,7 +175,7 @@ def unionUse(expression, unpack=True, dump=False):
     # NOTE: we assume that only queries that get data from a table can
     # return multiple entries
     if (kb.injection.data[PAYLOAD.TECHNIQUE.UNION].where == PAYLOAD.WHERE.NEGATIVE or \
-       (dump and (conf.limitStart or conf.limitStop))) and \
+       (dump and (conf.limitStart or conf.limitStop)) or "LIMIT " in expression.upper()) and \
        " FROM " in expression.upper() and ((Backend.getIdentifiedDbms() \
        not in FROM_DUMMY_TABLE) or (Backend.getIdentifiedDbms() in FROM_DUMMY_TABLE \
        and not expression.upper().endswith(FROM_DUMMY_TABLE[Backend.getIdentifiedDbms()]))) \