sqlmap 0.8-rc2: minor enhancement based on msfencode 3.3.3-dev -t exe-small so that also PostgreSQL supports again the out-of-band via Metasploit payload stager optionally to shellcode execution in-memory via sys_bineval() UDF. Speed up OOB connect back. Cleanup target file system after --os-pwn too. Minor bug fix to correctly forge file system paths with os.path.join() all around. Minor code refactoring and user's manual update.

2025-12-07 05:01:30 +00:00 · 2009-12-17 22:04:01 +00:00
parent a605980d66
commit e4e081cdc6
12 changed files with 103 additions and 76 deletions
--- a/lib/request/connect.py
+++ b/lib/request/connect.py
@@ -85,6 +85,9 @@ class Connect:
        else:
            requestMsg += "%s" % urlparse.urlsplit(url)[2] or "/"

+        if silent is True:
+            socket.setdefaulttimeout(3)
+
        if direct:
            if "?" in url:
                url, params = url.split("?")
@@ -202,7 +205,7 @@ class Connect:

                return None, None

-            if silent == True:
+            if silent is True:
                return None, None

            elif conf.retriesCount < conf.retries:
@@ -213,11 +216,15 @@ class Connect:

                time.sleep(1)

+                socket.setdefaulttimeout(conf.timeout)
                return Connect.__getPageProxy(url=url, get=get, post=post, cookie=cookie, ua=ua, direct=direct, multipart=multipart, silent=silent)

            else:
+                socket.setdefaulttimeout(conf.timeout)
                raise sqlmapConnectionException, warnMsg

+        socket.setdefaulttimeout(conf.timeout)
+
        parseResponse(page, responseHeaders)
        responseMsg += "(%s - %d):\n" % (status, code)