PenTest/sqlmap
1
0
Fork 0
mirror of https://github.com/sqlmapproject/sqlmap.git synced 2025-12-06 04:31:30 +00:00
Code Issues Projects Releases Wiki Activity

Better patch (related to previous one)

Browse Source
This commit is contained in:
Miroslav Stampar
2020-01-23 10:57:35 +01:00
parent 5b1574614d
commit e8be9e4af4
2 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
lib/controller/checks.py
View File

@@ -884,7 +884,7 @@ def heuristicCheckDbms(injection):
Backend.forceDbms(dbms)
if (randStr1 in unescaper.escape("'%s'" % randStr1)) and dbms not in FROM_DUMMY_TABLE:
if (randStr1 in unescaper.escape("'%s'" % randStr1)) and FROM_DUMMY_TABLE.values().count(FROM_DUMMY_TABLE.get(dbms, "")) != 1:
continue
if checkBooleanExpression("(SELECT '%s'%s)=%s%s%s" % (randStr1, FROM_DUMMY_TABLE.get(dbms, ""), SINGLE_QUOTE_MARKER, randStr1, SINGLE_QUOTE_MARKER)):