PenTest/sqlmap
1
0
Fork 0
mirror of https://github.com/sqlmapproject/sqlmap.git synced 2025-12-08 05:31:32 +00:00
Code Issues Projects Releases Wiki Activity

Fixed a bug reported by Bedirhan Urgun <bedirhanurgun@gmail.com>

Browse Source
This commit is contained in:
Bernardo Damele
2008-10-16 14:01:14 +00:00
parent 962d63eff5
commit d664f0387e
2 changed files with 6 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
lib/parse/configfile.py
View File

@@ -25,7 +25,7 @@ Franklin St, Fifth Floor, Boston, MA 02110-1301 USA
from ConfigParser import NoSectionError from ConfigParser import NoSectionError
from ConfigParser import SafeConfigParser from ConfigParser import ConfigParser
from lib.core.common import checkFile from lib.core.common import checkFile
from lib.core.data import conf from lib.core.data import conf
@@ -76,7 +76,7 @@ def configFileParser(configFile):
logger.debug(debugMsg) logger.debug(debugMsg)
checkFile(configFile) checkFile(configFile)
config = SafeConfigParser() config = ConfigParser()
config.read(configFile) config.read(configFile)
if not config.has_section("Request"): if not config.has_section("Request"):

5
lib/techniques/inference/blind.py
View File

@@ -92,7 +92,10 @@ def bisection(payload, expression, length=None):
queriesCount[0] += 1 queriesCount[0] += 1
limit = ((maxValue + minValue) / 2) limit = ((maxValue + minValue) / 2)
forgedPayload = payload % (expressionUnescaped, idx, limit) # TODO: find a cleaner way to do this
forgedPayload = payload.replace("%", "%%", 1) % (expressionUnescaped, idx, limit)
forgedPayload = forgedPayload.replace("%%", "%")
result = Request.queryPage(forgedPayload) result = Request.queryPage(forgedPayload)
if result == kb.defaultResult: if result == kb.defaultResult: