Minor update of fingerprint data for MySQL

Minor update of fingerprinting in H2 and HSQLDB
Fixes #5886
2025-12-06 12:41:30 +00:00 · 2025-05-07 10:42:51 +02:00 · 2025-04-28 16:56:17 +02:00 · 2025-04-05 14:41:45 +02:00 · 2025-04-01 10:29:33 +02:00 · 2025-04-01 10:26:19 +02:00
35 changed files with 276 additions and 85 deletions
--- a/.github/workflows/tests.yml
+++ b/.github/workflows/tests.yml
@@ -10,7 +10,7 @@ jobs:
    strategy:
      matrix:
        os: [ubuntu-latest, macos-latest, windows-latest]
-        python-version: [ 'pypy-2.7', '3.12' ]
+        python-version: [ 'pypy-2.7', '3.13' ]
        exclude:
          - os: macos-latest
            python-version: 'pypy-2.7'
--- a/data/txt/sha256sums.txt
+++ b/data/txt/sha256sums.txt
@@ -71,7 +71,7 @@ c6be099a5dee34f3a7570715428add2e7419f4e73a7ce9913d3fb76eea78d88e  data/udf/postg
 9f4ca1ff145cfbe3c3a903a21bf35f6b06ab8b484dad6b7c09e95262bf6bfa05  data/xml/banner/postgresql.xml
 86da6e90d9ccf261568eda26a6455da226c19a42cc7cd211e379cab528ec621e  data/xml/banner/server.xml
 146887f28e3e19861516bca551e050ce81a1b8d6bb69fd342cc1f19a25849328  data/xml/banner/servlet-engine.xml
-7973d2024e7803951445a569b591e151edcc322c00213f478dcd9aff23afd226  data/xml/banner/set-cookie.xml
+e87c062bdf05b27db6c1d7e0d41c25f269cbe66b1f9b8e2d9b3db0d567016c76  data/xml/banner/set-cookie.xml
 a7eb4d1bcbdfd155383dcd35396e2d9dd40c2e89ce9d5a02e63a95a94f0ab4ea  data/xml/banner/sharepoint.xml
 e2febc92f9686eacf17a0054f175917b783cc6638ca570435a5203b03245fc18  data/xml/banner/x-aspnet-version.xml
 75672f8faa8053af0df566a48700f2178075f67c593d916313fcff3474da6f82  data/xml/banner/x-powered-by.xml
@@ -85,7 +85,7 @@ b0f434f64105bd61ab0f6867b3f681b97fa02b4fb809ac538db382d031f0e609  data/xml/paylo
 40a4878669f318568097719d07dc906a19b8520bc742be3583321fc1e8176089  data/xml/payloads/union_query.xml
 95b7464b1a7b75e2b462d73c6cca455c13b301f50182a8b2cd6701cdcb80b43e  data/xml/queries.xml
 abb6261b1c531ad2ee3ada8184c76bcdc38732558d11a8e519f36fcc95325f7e  doc/AUTHORS
-68550be6eeb800bb54b1b47877412ecc88cf627fb8c88aaee029687152eb3fc1  doc/CHANGELOG.md
+2a0322f121cbda30336ab58382e9860fea8ab28ff4726f6f8abf143ce1657abe  doc/CHANGELOG.md
 2df1f15110f74ce4e52f0e7e4a605e6c7e08fbda243e444f9b60e26dfc5cf09d  doc/THANKS.md
 f939c6341e3ab16b0bb9d597e4b13856c7d922be27fd8dba3aa976b347771f16  doc/THIRD-PARTY.md
 792bcf9bf7ac0696353adaf111ee643f79f1948d9b5761de9c25eb0a81a998c9  doc/translations/README-bg-BG.md
@@ -112,7 +112,7 @@ c94d5c9ae4e4b996eaf0d06a6c5323a12f22653bb53c5eaf5400ee0bccf4a1eb  doc/translatio
 0bccce9d2e48e7acc1ef126539a50d3d83c439f94cc6387c1331a9960604a2cd  doc/translations/README-uk-UA.md
 285c997e8ae7381d765143b5de6721cad598d564fd5f01a921108f285d9603a2  doc/translations/README-vi-VN.md
 b553a179c731127a115d68dfb2342602ad8558a42aa123050ba51a08509483f6  doc/translations/README-zh-CN.md
-783ddbaa638d2d2987be7aa2e9e9e40aef8c0b7a132db60949e43bc733d01978  extra/beep/beep.py
+a438fbd0e9d8fb3d836d095b3bb94522d57db968bb76a9b5cb3ffe1834305a27  extra/beep/beep.py
 509276140d23bfc079a6863e0291c4d0077dea6942658a992cbca7904a43fae9  extra/beep/beep.wav
 1d6e741e19e467650dce2ca84aa824d6df68ff74aedbe4afa8dbdb0193d94918  extra/beep/__init__.py
 3b54434b0d00c8fd12328ef8e567821bd73a796944cb150539aa362803ab46e5  extra/cloak/cloak.py
@@ -149,7 +149,7 @@ f3d8033f8c451ae28ca4b8f65cf2ceb77fadba21f11f19229f08398cbf523bc6  extra/shutils/
 8779e1a56165327e49bbfd6cb2a461ab18cd8a83e9bfc139c9bdfc8e44f2a23f  extra/shutils/modernize.sh
 74fe683e94702bef6b8ea8eebb7fc47040e3ef5a03dec756e3cf4504a00c7839  extra/shutils/newlines.py
 fed05c468af662ba6ca6885baf8bf85fec1e58f438b3208f3819ad730a75a803  extra/shutils/postcommit-hook.sh
-dc35b51f5c9347eda8130106ee46bb051474fc0c5ed101f84abf3e546f729ceb  extra/shutils/precommit-hook.sh
+ca86d61d3349ed2d94a6b164d4648cff9701199b5e32378c3f40fca0f517b128  extra/shutils/precommit-hook.sh
 1909f0d510d0968fb1a6574eec17212b59081b2d7eb97399a80ba0dc0e77ddd1  extra/shutils/pycodestyle.sh
 026af5ba1055e85601dcdcb55bc9de41a6ee2b5f9265e750c878811c74dee2b0  extra/shutils/pydiatra.sh
 2ce9ac90e7d37a38b9d8dcc908632575a5bafc4c75d6d14611112d0eea418369  extra/shutils/pyflakes.sh
@@ -166,7 +166,7 @@ de2b0220db1c79d8720b636d267b11e117151f5f99740567096e9b4cbb7cc9d5  lib/controller
 1d6e741e19e467650dce2ca84aa824d6df68ff74aedbe4afa8dbdb0193d94918  lib/controller/__init__.py
 41c7fb7e486c4383a114c851f0c32c81c53c2b4f1d2a0fd99f70885072646387  lib/core/agent.py
 f848dcfdacb5143f803f4e9474cf3eef939039c26c522ca09777c425661300f0  lib/core/bigarray.py
-129bcc6342e2398c9d66204524ceb005121b83a23311e0724891d4cd0abd17a5  lib/core/common.py
+afecad4b14e8008f6f97a6ec653fc930dfd8dc65f9d24a51274f8b5c3f63a4e2  lib/core/common.py
 88fbbe7c41511b17d7ef449d675a84eaa80cac6ebf457a18577eadd62f6f1330  lib/core/compat.py
 5ce8f2292f99d17d69bfc40ded206bfdfd06e2e3660ff9d1b3c56163793f8d1c  lib/core/convert.py
 f561310b3cea570cc13d9f0aff16cce8b097d51275f8b947e7fff4876ac65c32  lib/core/data.py
@@ -180,15 +180,15 @@ ec8d94fb704c0a40c88f5f283624cda025e2ea0e8b68722fe156c2b5676f53ac  lib/core/dicts
 93c256111dc753967169988e1289a0ea10ec77bfb8e2cbd1f6725e939bfbc235  lib/core/gui.py
 1d6e741e19e467650dce2ca84aa824d6df68ff74aedbe4afa8dbdb0193d94918  lib/core/__init__.py
 53499dc202a036289e3b2b9699d19568e794d077e16fd3a5c91771983de45451  lib/core/log.py
-eb1890d111e6187cac4cf81c3a525e95e7061607847d4f05ec23f9dba8febdcd  lib/core/optiondict.py
+79c6b0332efa7cdf752f5caad6bd81a78a0369f2c33c107d9aaeaf52edc7e6e7  lib/core/optiondict.py
-ceea031ce1a49a20af689d750d33d057e38a7c631f008872b04f380e2de39bb9  lib/core/option.py
+2f007b088aad979f75c4d864603dfc685da5be219ae116f2bb0d6445d2db4f83  lib/core/option.py
 81275fdbd463d89a2bfd8c00417a17a872aad74f34c18e44be79c0503e67dfa5  lib/core/patch.py
 e79df3790f16f67988e46f94b0a516d7ee725967f7698c8e17f210e4052203a7  lib/core/profiling.py
 c6a182f6b7d3b0ad6f0888ea2a4de4148f0770549038d7de8bc3267b4c6635f7  lib/core/readlineng.py
 63ae69713c6ea9abfa10e71dfab8f2dcf42432177a38d2c1e98785bf1468674c  lib/core/replication.py
 5bad5bc7115051cef7b84efa73fbafbf5e1db46eef32a445056b56cda750b66f  lib/core/revision.py
 0dcb52c9c76a4b0acf2e9038f7d8f08c14543cef3cf7032831c6c0a99376ad24  lib/core/session.py
-6f87796de3de274f114c398603b5e5f71e4404d7a0b3d30b0cb4dd5a01c3272f  lib/core/settings.py
+a6052d9b44717a8cb571cef68baea565551bfbd0d41578e2143b58f29f10ae53  lib/core/settings.py
 a1e4f2860bffc73bbf2e5db293fa49dcb600ea35f950cda43dc953b3160ab3db  lib/core/shell.py
 841716e87b90a3b598515910841f7cf8d33bb87c24a27fba1a80e36a831cbcd7  lib/core/subprocessng.py
 9731092f195e346716929323ea3c93247b23b9b92b0f32d3fd0acc3adf9876cc  lib/core/target.py
@@ -199,7 +199,7 @@ b1071f449a66b4ceacd4b84b33a73d9e0a3197d271d72daaa406ba473a8bb625  lib/core/testi
 12cbead4e9e563b970fafb891127927445bd53bada1fac323b9cd27da551ba30  lib/core/wordlist.py
 1d6e741e19e467650dce2ca84aa824d6df68ff74aedbe4afa8dbdb0193d94918  lib/__init__.py
 a027f4c44811cb74aa367525f353706de3d3fc719e6c6162f7a61dc838acf0c2  lib/parse/banner.py
-9c7f95948cb6ee20b2b5bff7b36c23179c44303d3c8ad555247f65f12f30e0a9  lib/parse/cmdline.py
+b157cdba54e722e97a22de35479bc9c3eeeb5658e6b5d8ff16a66776a3d520a4  lib/parse/cmdline.py
 3907765df08c31f8d59350a287e826bd315a7714dc0e87496f67c8a0879c86ac  lib/parse/configfile.py
 ced03337edd5a16b56a379c9ac47775895e1053003c25f6ba5bec721b6e3aa64  lib/parse/handler.py
 3704a02dcf00b0988b101e30b2e0d48acdd20227e46d8b552e46c55d7e9bf28c  lib/parse/headers.py
@@ -210,11 +210,11 @@ cbabdde72df4bd8d6961d589f1721dd938d8f653aa6af8900a31af6e2586405d  lib/parse/site
 87109063dd336fe2705fdfef23bc9b340dcc58e410f15c372fab51ea6a1bf4b1  lib/request/basicauthhandler.py
 89417568d7f19e48d39a8a9a4227d3d2b71d1c9f61139a41b1835fb5266fcab8  lib/request/basic.py
 6139b926a3462d14ddd50acdb8575ae442b8fab089db222721535092b9af3ea1  lib/request/chunkedhandler.py
-ad661a075c6df0624747722d77ca3b1f69f36e54708e33673a33cfdef1ed5075  lib/request/comparison.py
+6be5719f3c922682931779830a4571a13d5612a69e2423fd60a254e8dbceaf5c  lib/request/comparison.py
-65c57ca9de892b6b7b55e1b13392f94e831710f7d21755a7d85eb6db4f61eb41  lib/request/connect.py
+b27dd003eba5ac4697b6a1d5a6712e6aca380436a5a379bd5f2e831d6dca19bd  lib/request/connect.py
 0649a39c5cc2fc0f4c062b100ced17e3e6934a7e578247dfc65b650edc29825e  lib/request/direct.py
 5283754cf387ce4e645ee50834ee387cde29a768aaada1a6a07c338da216c94d  lib/request/dns.py
-2dd88e1f75c0ee54c335d5d0d9199216194aa299bd8ce99dca333c2e4f9ea38b  lib/request/httpshandler.py
+844fae318d6b3141bfc817aac7a29868497b5e7b4b3fdd7c751ad1d4a485324f  lib/request/httpshandler.py
 1d6e741e19e467650dce2ca84aa824d6df68ff74aedbe4afa8dbdb0193d94918  lib/request/__init__.py
 64442b90c1e02b23db3ed764a0588f9052b96c4690b234af1682b3b7e52d51a8  lib/request/inject.py
 6ac4235e40dda2d51b21c2199374eb30d53a5b40869f80055df0ac34fbe59351  lib/request/methodrequest.py
@@ -236,15 +236,15 @@ ec77bee2f221157aff16ec518ca2f3f8359952cd0835f70dd6a5cd8d57caf5bc  lib/takeover/w
 1b8b4fe2088247f99b96ccab078a8bd72dc934d7bd155498eec2a77b67c55daf  lib/techniques/dns/test.py
 9120019b1a87e0df043e815817b8bfb9965bda6f6fa633dc667c940865bb830c  lib/techniques/dns/use.py
 1d6e741e19e467650dce2ca84aa824d6df68ff74aedbe4afa8dbdb0193d94918  lib/techniques/error/__init__.py
-5063c30a821da00d0935b4e6c2f668f35818c8a6c2005e2e0074f491366f7725  lib/techniques/error/use.py
+219871c68e5b67238ace9a8f46de0b267f4dd70fc02786a4a44de3bb95f8695b  lib/techniques/error/use.py
 1d6e741e19e467650dce2ca84aa824d6df68ff74aedbe4afa8dbdb0193d94918  lib/techniques/__init__.py
 1d6e741e19e467650dce2ca84aa824d6df68ff74aedbe4afa8dbdb0193d94918  lib/techniques/union/__init__.py
 3349573564c035ef7c3dbca7da3aecde139f31621395a1a6a7d2eef1dccbb9b0  lib/techniques/union/test.py
-b781403433a2ad9a18fa9b1cc291165f04f734942268b4eba004a53afe8abe49  lib/techniques/union/use.py
+eb564696a2e0c8e8844c1593c77f7bb41e47ce89f213afe93cbba7f1190e91f0  lib/techniques/union/use.py
 c09927bccdbdb9714865c9a72d2a739da745375702a935349ddb9edc1d50de70  lib/utils/api.py
 1d72a586358c5f6f0b44b48135229742d2e598d40cefbeeabcb40a1c2e0b70b2  lib/utils/brute.py
 dd0b67fc2bdf65a4c22a029b056698672a6409eff9a9e55da6250907e8995728  lib/utils/crawler.py
-41a037169ca0b595781d70d6af40e2b47c9a2732fd08378029502bbe6f522960  lib/utils/deps.py
+eac125d270256eff54e39736a423dde866bac3b2bb4c76d3cbc32fc53b3bbb99  lib/utils/deps.py
 0b83cc8657d5bea117c02facde2b1426c8fe35d9372d996c644d67575d8b755f  lib/utils/getch.py
 c2a2fa68d2c575ab35f472d50b8d52dd6fc5e1b4d6c86a06ac06365650fec321  lib/utils/har.py
 e6376fb0c3d001b6be0ef0f23e99a47734cfe3a3d271521dbe6d624d32f19953  lib/utils/hashdb.py
@@ -342,14 +342,14 @@ ac17975286d2a01f6841ad05a7ccb2332bd2c672631c70bd7f3423aa8ad1b852  plugins/dbms/f
 e4e5ec5ffc77fb6697da01a0a5469cc3373b287a3e1f4d40efe8295625e8f333  plugins/dbms/h2/connector.py
 5b35fef7466bb0b99c6aa99c18b58e3005372bec99ce809cc068c72f87a950de  plugins/dbms/h2/enumeration.py
 f83219407b5134e9283baa1f1741d965f650cf165dbd0bad991dc1283e947572  plugins/dbms/h2/filesystem.py
-9ff278b87cf61bd301324b357ffb7ca6305f46d903ce5fd821b8d139357c1d14  plugins/dbms/h2/fingerprint.py
+294308fa97bedc3d4e6b0e09f2f23d9ccceb129e83f6f26790f433d73fc874ae  plugins/dbms/h2/fingerprint.py
 860696c2561a5d4c6d573c50a257e039bff77ffbc5119513d77089096b051fbc  plugins/dbms/h2/__init__.py
 95149998d4aa7751dfcd1653707b1f94503798f4ef719775a0fddd011742b2ba  plugins/dbms/h2/syntax.py
 8934c4fffc67f0080970bf007d0e2f25d6a79482cc2370673833f3cbe1f9f620  plugins/dbms/h2/takeover.py
 42d3fa136a67898c1908a3882baf128d15a48cd2cfe64054fa77038096e5bc0b  plugins/dbms/hsqldb/connector.py
 4c65b248cb0c2477ffaa9f337af698f6abc910907ef04f2b7ddc783dcc085f7a  plugins/dbms/hsqldb/enumeration.py
 d2581e9e2833b4232fcfc720f6d6638ec2254931f0905f0e281a4022d430c0f0  plugins/dbms/hsqldb/filesystem.py
-95ccbaa856cffc900e752a6e85779bf22feebab98035ba62b1ac93ac08da568e  plugins/dbms/hsqldb/fingerprint.py
+467eb72c43e70f34a440697ed5c9f5b78acc89d50dbb518388dbe53d22777ff3  plugins/dbms/hsqldb/fingerprint.py
 d175e63fd1c896a4c02e7e2b48d818108635c3b98a64a6068e1d4c814d2ce8ce  plugins/dbms/hsqldb/__init__.py
 95149998d4aa7751dfcd1653707b1f94503798f4ef719775a0fddd011742b2ba  plugins/dbms/hsqldb/syntax.py
 0aaa588c65e730320ab501b83b489db25f3f6cf20b5917bcdb9e9304df3419cb  plugins/dbms/hsqldb/takeover.py
@@ -399,7 +399,7 @@ f01e26e641fbfb3c3e7620c9cd87739a9a607fc66c56337ca02cc85479fb5f63  plugins/dbms/m
 36e706114f64097e185372aa97420f5267f7e1ccfc03968beda899cd6e32f226  plugins/dbms/mysql/connector.py
 96126e474f7c4e5581cabccff3e924c4789c8e2dbc74463ab7503ace08a88a3a  plugins/dbms/mysql/enumeration.py
 4c6af0e2202a080aa94be399a3d60cab97551ac42aa2bcc95581782f3cabc0c3  plugins/dbms/mysql/filesystem.py
-b2c69cfa82d1ea7a5278780d20de6d0c4f1dc0158a809355ed2ffb9afbc74b36  plugins/dbms/mysql/fingerprint.py
+8f74a5eef2fc69850aec6d89bd30f1caf095c6ad2b09bec54d35c152c9090c22  plugins/dbms/mysql/fingerprint.py
 34dfa460e65be6f775b1d81906c97515a435f3dbadda57f5a928f7b87cefd97d  plugins/dbms/mysql/__init__.py
 eb59dd2ce04fa676375166549b532e0a5b6cb4c1666b7b2b780446d615aefb07  plugins/dbms/mysql/syntax.py
 05e1586c3a32ee8596adb48bec4588888883727b05a367a48adb6b86abea1188  plugins/dbms/mysql/takeover.py
@@ -413,7 +413,7 @@ d5c9bba081766f14d14e2898d1a041f97961bebac3cf3e891f8942b31c28b47e  plugins/dbms/o
 c9a8ac9fa836cf6914272b24f434509b49294f2cb177d886622e38baa22f2f15  plugins/dbms/postgresql/connector.py
 b086d8ff29282c688772f6672c1132c667a1051a000fc4fcd4ab1068203b0acb  plugins/dbms/postgresql/enumeration.py
 bb23135008e1616e0eb35719b5f49d4093cc688ad610766fca7b1d627c811dd8  plugins/dbms/postgresql/filesystem.py
-ba0eae8047e65dcd23d005e0336653967be9ec4a6df35f4997b006b05a57ea8b  plugins/dbms/postgresql/fingerprint.py
+7c563983fc644f8af4a5906149d033a79b0a5bc319c3b7809032270a32122038  plugins/dbms/postgresql/fingerprint.py
 9912b2031d0dfa35e2f6e71ea24cec35f0129e696334b7335cd36eac39abe23a  plugins/dbms/postgresql/__init__.py
 1a5d2c3b9bd8b7c14e0b1e810e964f698335f779f1a8407b71366dc5e0ee963c  plugins/dbms/postgresql/syntax.py
 b9886913baaac83f6b47b060a4785fe75f61db8c8266b4de8ccfaf180938900a  plugins/dbms/postgresql/takeover.py
@@ -476,17 +476,17 @@ b3d9d0644197ecb864e899c04ee9c7cd63891ecf2a0d3c333aad563eef735294  plugins/generi
 5a473c60853f54f1a4b14d79b8237f659278fe8a6b42e935ed573bf22b6d5b2c  README.md
 8c4fd81d84598535643cf0ef1b2d350cd92977cb55287e23993b76eaa2215c30  sqlmapapi.py
 168309215af7dd5b0b71070e1770e72f1cbb29a3d8025143fb8aa0b88cd56b62  sqlmapapi.yaml
-6da15963699aa8916118f92c8838013bc02c84e4d7b9f33d971324c2ff348728  sqlmap.conf
+4121621b1accd6099eed095e9aa48d6db6a4fdfa3bbc5eb569d54c050132cbbf  sqlmap.conf
-3795c6d03bc341a0e3aef3d7990ea8c272d91a4c307e1498e850594375af39f7  sqlmap.py
+f84846b8493d809d697a75b3d13d904013bbb03e0edd82b724f4753801609057  sqlmap.py
-d6788235cd599e05cb65e9c3279a03b1cf769d4aa15c78d226a1d2cf6aa14e86  tamper/0eunion.py
+9d408612a6780f7f50a7f7887f923ff3f40be5bfa09a951c6dc273ded05b56c0  tamper/0eunion.py
-35ad42cc9fbe66f025d9f6d0b1284a9f00213510e3c39e60a2d8f3e8b6a77e7b  tamper/apostrophemask.py
+c1c2eaa7df016cc7786ccee0ae4f4f363b1dce139c61fb3e658937cb0d18fc54  tamper/apostrophemask.py
-71bc240d0153fccb9caa828f05eca4e9d51c2e5510dee9fb8533b70226d29207  tamper/apostrophenullencode.py
+19023093ab22aec3bce9523f28e8111e8f6125973e6d9c82adb60da056bdf617  tamper/apostrophenullencode.py
-847b5dc53e195f30abaa6e60b9bc9f39e15df7e6c2a99b31a435b69a345c0937  tamper/appendnullbyte.py
+ffb81905dfbfa346f949aed54755944403bfbc0cc015cd196e412d7c516c5111  tamper/appendnullbyte.py
-510b050400bf8cf3ed30d29635083dd69692ec0ca20fe9cb9958feb4f89e34fe  tamper/base64encode.py
+50c270f6073a2dab08a5d64a91db1d1b372a206abd85ad54a630e1067ad614cf  tamper/base64encode.py
-c41f1f5fa2fa73b130f9194e89a04b512fe21784cf1a94e3a61680995999b1dd  tamper/between.py
+874aea492eed81c646488cd184a2c07b0fba2be247208227c91de9b223b016ee  tamper/between.py
-576aa77cacbe18695038eeab851be217347ed28d1c0505a098e93fcb3db3575b  tamper/binary.py
+386ede29943456818e22ec9d1555693c9d676c9330bc527dbb9b3f52c9b3cbb1  tamper/binary.py
-805239f02e8f1bbc3374cb02aec3aa6ae37b72716344f201094c9f39ff35e655  tamper/bluecoat.py
+63a3fc494ff07b9f0e37025ff932b386aaeafd24a65da7f530f562ed78083c51  tamper/bluecoat.py
-5e52fb35fbd46cd5293c03491913b655eb47ddb7e99c2830e454945eee693a22  tamper/chardoubleencode.py
+4635c3b863e624169347d37834021402d95b4240bd138bec2ffc9d4f28d23422  tamper/chardoubleencode.py
 fa25e5a74c6cf0787b4f72321294095a3b7690f53423f058187ad08b458ef1fe  tamper/charencode.py
 1c87fc49792df6091b7eb880108142b42a0a3810cc0cd2316a858ccdbf1c5ce4  tamper/charunicodeencode.py
 00d51073f9e40d8dfa5fcb04eafda359bd0ecb91e358b3910f3ec43c1a381111  tamper/charunicodeescape.py
@@ -511,6 +511,7 @@ d498e409c96d2ae2cc86263ead52ae385e95e9ec27f28247180c7c73ec348b3f  tamper/informa
 1d6e741e19e467650dce2ca84aa824d6df68ff74aedbe4afa8dbdb0193d94918  tamper/__init__.py
 b9a84211c84785361f4efa55858a1cdddd63cee644d0b8d4323b3a5e3db7d12f  tamper/least.py
 0de2bd766f883ac742f194f991c5d38799ffbf4346f4376be7ec8d750f2d9ef8  tamper/lowercase.py
 5015f35181dd4e4e0bddc67c4dfd86d6c509ae48a5f0212a122ff9a62f7352ce  tamper/luanginxmore.py
 c390d072ed48431ab5848d51b9ca5c4ff323964a770f0597bdde943ed12377f8  tamper/luanginx.py
 7eba10540514a5bfaee02e92b711e0f89ffe30b1672ec25c7680f2aa336c8a58  tamper/misunion.py
 b262da8d38dbb4be64d42e0ab07e25611da11c5d07aa11b09497b344a4c76b8d  tamper/modsecurityversioned.py
@@ -523,7 +524,7 @@ a1e7d8907e7b4b25b1a418e8d5221e909096f719dcb611d15b5e91c83454ccdc  tamper/overlon
 704551003e62d4fc1949855931d6cebd57cc5cdbf2221dbd43e51cbdad6f130d  tamper/plus2concat.py
 b9d1e3ee657236b13ad5ecaf2adfa089e24a0e67738253eedb533a68f277a6e3  tamper/plus2fnconcat.py
 fb4b7539284db076147a530df1dd072d5d35e32a71fd7bc8e312319d5f3aaa52  tamper/randomcase.py
-b27066b7ea4f69243d5a353327090a0630bbf7f512edf5e277cde2c10139b3dd  tamper/randomcomments.py
+f40d9267b4e9b689412cd45eb7b61540420f977370c5f9deba272bdae09d2404  tamper/randomcomments.py
 35a8539ac8030d3fc176ea8231fe8983285fc576f7e0b50ccdf911a565f1f758  tamper/schemasplit.py
 a34524af6fe2f2bba642b3234fbf1aa8785761e7d82906005b5476b7cc724857  tamper/scientific.py
 65d22c54abfa61b73140020d48a86ec8eeb4c9e4e5e088d1462e4bce4a64f18b  tamper/sleep2getlock.py
@@ -620,7 +621,7 @@ ef70b88cc969a3e259868f163ad822832f846196e3f7d7eccb84958c80b7f696  thirdparty/odi
 8df6e8c60eac4c83b1bf8c4e0e0276a4caa3c5f0ca57bc6a2116f31f19d3c33f  thirdparty/prettyprint/prettyprint.py
 3739db672154ad4dfa05c9ac298b0440f3f1500c6a3697c2b8ac759479426b84  thirdparty/pydes/__init__.py
 d1d54fc08f80148a4e2ac5eee84c8475617e8c18bfbde0dfe6894c0f868e4659  thirdparty/pydes/pyDes.py
-1c61d71502a80f642ff34726aa287ac40c1edd8f9239ce2e094f6fded00d00d4  thirdparty/six/__init__.py
+c51c91f703d3d4b3696c923cb5fec213e05e75d9215393befac7f2fa6a3904df  thirdparty/six/__init__.py
 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855  thirdparty/socks/__init__.py
 7027e214e014eb78b7adcc1ceda5aca713a79fc4f6a0c52c9da5b3e707e6ffe9  thirdparty/socks/LICENSE
 543217f63a4f0a7e7b4f9063058d2173099d54d010a6a4432e15a97f76456520  thirdparty/socks/socks.py
--- a/data/xml/banner/set-cookie.xml
+++ b/data/xml/banner/set-cookie.xml
@@ -62,4 +62,32 @@
    <regexp value="\bwp_">
        <info technology="WordPress"/>
    </regexp>
    <regexp value="_session_id">
        <info technology="Ruby on Rails"/>
    </regexp>
    <regexp value="sessionid">
        <info technology="Django"/>
    </regexp>
    <regexp value="connect\.sid">
        <info technology="Node.js (Express)"/>
    </regexp>
    <regexp value="laravel_session">
        <info technology="Laravel (PHP)"/>
    </regexp>
    <regexp value="SESS[a-f0-9]{32}">
        <info technology="Drupal"/>
    </regexp>
    <regexp value="joomla_[a-z0-9]+">
        <info technology="Joomla"/>
    </regexp>
    <regexp value="sails\.sid">
        <info technology="Sails.js"/>
    </regexp>
 </root>
--- a/doc/CHANGELOG.md
+++ b/doc/CHANGELOG.md
@@ -1,4 +1,14 @@
-# Version 1.7 (2022-01-02)
+# Version 1.9 (2025-01-02)
 * [View changes](https://github.com/sqlmapproject/sqlmap/compare/1.8...1.9)
 * [View issues](https://github.com/sqlmapproject/sqlmap/milestone/10?closed=1)
 # Version 1.8 (2024-01-03)
 * [View changes](https://github.com/sqlmapproject/sqlmap/compare/1.7...1.8)
 * [View issues](https://github.com/sqlmapproject/sqlmap/milestone/9?closed=1)
 # Version 1.7 (2023-01-02)
 * [View changes](https://github.com/sqlmapproject/sqlmap/compare/1.6...1.7)
 * [View issues](https://github.com/sqlmapproject/sqlmap/milestone/8?closed=1)
--- a/extra/beep/beep.py
+++ b/extra/beep/beep.py
@@ -18,7 +18,7 @@ def beep():
        if sys.platform.startswith("win"):
            _win_wav_play(BEEP_WAV_FILENAME)
        elif sys.platform.startswith("darwin"):
-            _mac_beep()
+            _mac_wav_play(BEEP_WAV_FILENAME)
        elif sys.platform.startswith("cygwin"):
            _cygwin_beep(BEEP_WAV_FILENAME)
        elif any(sys.platform.startswith(_) for _ in ("linux", "freebsd")):
@@ -40,9 +40,8 @@ def _speaker_beep():
 def _cygwin_beep(filename):
    os.system("play-sound-file '%s' 2>/dev/null" % filename)
-def _mac_beep():
+def _mac_wav_play(filename):
-    import Carbon.Snd
+    os.system("afplay '%s' 2>/dev/null" % BEEP_WAV_FILENAME)
    Carbon.Snd.SysBeep(1)
 def _win_wav_play(filename):
    import winsound
@@ -50,7 +49,7 @@ def _win_wav_play(filename):
    winsound.PlaySound(filename, winsound.SND_FILENAME)
 def _linux_wav_play(filename):
-    for _ in ("aplay", "paplay", "play"):
+    for _ in ("paplay", "aplay", "mpv", "mplayer", "play"):
        if not os.system("%s '%s' 2>/dev/null" % (_, filename)):
            return
--- a/extra/shutils/precommit-hook.sh
+++ b/extra/shutils/precommit-hook.sh
@@ -24,7 +24,7 @@ git diff $SETTINGS_FULLPATH | grep "VERSION =" > /dev/null && exit 0
 if [ -f $SETTINGS_FULLPATH ]
 then
-    LINE=$(grep -o ${SETTINGS_FULLPATH} -e 'VERSION = "[0-9.]*"')
+    LINE=$(grep -o ${SETTINGS_FULLPATH} -e '^VERSION = "[0-9.]*"')
    declare -a LINE
    INCREMENTED=$(python -c "import re, sys, time; version = re.search('\"([0-9.]*)\"', sys.argv[1]).group(1); _ = version.split('.'); _.extend([0] * (4 - len(_))); _[-1] = str(int(_[-1]) + 1); month = str(time.gmtime().tm_mon); _[-1] = '0' if _[-2] != month else _[-1]; _[-2] = month; print sys.argv[1].replace(version, '.'.join(_))" "$LINE")
    if [ -n "$INCREMENTED" ]
--- a/lib/core/common.py
+++ b/lib/core/common.py
@@ -35,6 +35,7 @@ import threading
 import time
 import types
 import unicodedata
 import zlib
 from difflib import SequenceMatcher
 from math import sqrt
@@ -4005,7 +4006,8 @@ def createGithubIssue(errMsg, excMsg):
            pass
        data = {"title": "Unhandled exception (#%s)" % key, "body": "```%s\n```\n```\n%s```" % (errMsg, excMsg)}
-        req = _urllib.request.Request(url="https://api.github.com/repos/sqlmapproject/sqlmap/issues", data=getBytes(json.dumps(data)), headers={HTTP_HEADER.AUTHORIZATION: "token %s" % decodeBase64(GITHUB_REPORT_OAUTH_TOKEN, binary=False), HTTP_HEADER.USER_AGENT: fetchRandomAgent()})
+        token = getText(zlib.decompress(decodeBase64(GITHUB_REPORT_OAUTH_TOKEN[::-1], binary=True))[0::2][::-1])
        req = _urllib.request.Request(url="https://api.github.com/repos/sqlmapproject/sqlmap/issues", data=getBytes(json.dumps(data)), headers={HTTP_HEADER.AUTHORIZATION: "token %s" % token, HTTP_HEADER.USER_AGENT: fetchRandomAgent()})
        try:
            content = getText(_urllib.request.urlopen(req).read())
@@ -5605,7 +5607,8 @@ def checkSums():
            if match:
                expected, filename = match.groups()
                filepath = os.path.join(paths.SQLMAP_ROOT_PATH, filename).replace('/', os.path.sep)
-                checkFile(filepath)
+                if not checkFile(filepath, False):
                    continue
                with open(filepath, "rb") as f:
                    content = f.read()
                if not hashlib.sha256(content).hexdigest() == expected:
--- a/lib/core/option.py
+++ b/lib/core/option.py
@@ -1175,7 +1175,7 @@ def _setHTTPHandlers():
                    proxyString = ""
                proxyString += "%s:%d" % (hostname, port)
-                proxyHandler.proxies = {"http": proxyString, "https": proxyString}
+                proxyHandler.proxies = kb.proxies = {"http": proxyString, "https": proxyString}
            proxyHandler.__init__(proxyHandler.proxies)
@@ -2151,6 +2151,7 @@ def _setKnowledgeBaseAttributes(flushAll=True):
    kb.previousMethod = None
    kb.processNonCustom = None
    kb.processUserMarks = None
    kb.proxies = None
    kb.proxyAuthHeader = None
    kb.queryCounter = 0
    kb.randomPool = {}
--- a/lib/core/optiondict.py
+++ b/lib/core/optiondict.py
@@ -30,6 +30,7 @@ optDict = {
        "liveCookies": "string",
        "loadCookies": "string",
        "dropSetCookie": "boolean",
        "http2": "boolean",
        "agent": "string",
        "mobile": "boolean",
        "randomAgent": "boolean",
@@ -252,6 +253,7 @@ optDict = {
        "disableHashing": "boolean",
        "listTampers": "boolean",
        "noLogging": "boolean",
        "noTruncate": "boolean",
        "offline": "boolean",
        "purge": "boolean",
        "resultsFile": "string",
--- a/lib/core/settings.py
+++ b/lib/core/settings.py
@@ -19,7 +19,7 @@ from lib.core.enums import OS
 from thirdparty import six
 # sqlmap version (<major>.<minor>.<month>.<monthly commit>)
-VERSION = "1.9.2.0"
+VERSION = "1.9.5.0"
 TYPE = "dev" if VERSION.count('.') > 2 and VERSION.split('.')[-1] != '0' else "stable"
 TYPE_COLORS = {"dev": 33, "stable": 90, "pip": 34}
 VERSION_STRING = "sqlmap/%s#%s" % ('.'.join(VERSION.split('.')[:-1]) if VERSION.count('.') > 2 and VERSION.split('.')[-1] == '0' else VERSION, TYPE)
@@ -61,7 +61,7 @@ LOWER_RATIO_BOUND = 0.02
 UPPER_RATIO_BOUND = 0.98
 # For filling in case of dumb push updates
-DUMMY_JUNK = "ouZ0ii8A"
+DUMMY_JUNK = "ahy9Ouge"
 # Markers for special cases when parameter values contain html encoded characters
 PARAMETER_AMP_MARKER = "__AMP__"
@@ -701,7 +701,7 @@ DEFAULT_COOKIE_DELIMITER = ';'
 FORCE_COOKIE_EXPIRATION_TIME = "9999999999"
 # Github OAuth token used for creating an automatic Issue for unhandled exceptions
-GITHUB_REPORT_OAUTH_TOKEN = "Z2hwX0pNd0I2U25kN2Q5QmxlWkhxZmkxVXZTSHZiTlRDWjE5NUNpNA"
+GITHUB_REPORT_OAUTH_TOKEN = "wxqc7vTeW8ohIcX+1wK55Mnql2Ex9cP+2s1dqTr/mjlZJVfLnq24fMAi08v5vRvOmuhVZQdOT/lhIRovWvIJrdECD1ud8VMPWpxY+NmjHoEx+VLK1/vCAUBwJe"
 # Skip unforced HashDB flush requests below the threshold number of cached items
 HASHDB_FLUSH_THRESHOLD = 32
@@ -835,6 +835,9 @@ INVALID_UNICODE_PRIVATE_AREA = False
 # Format used for representing invalid unicode characters
 INVALID_UNICODE_CHAR_FORMAT = r"\x%02x"
 # Minimum supported version of httpx library (for --http2)
 MIN_HTTPX_VERSION = "0.28"
 # Regular expression for XML POST data
 XML_RECOGNITION_REGEX = r"(?s)\A\s*<[^>]+>(.+>)?\s*\Z"
--- a/lib/parse/cmdline.py
+++ b/lib/parse/cmdline.py
@@ -177,6 +177,9 @@ def cmdLineParser(argv=None):
        request.add_argument("--drop-set-cookie", dest="dropSetCookie", action="store_true",
            help="Ignore Set-Cookie header from response")
        request.add_argument("--http2", dest="http2", action="store_true",
            help="Use HTTP version 2 (experimental)")
        request.add_argument("--mobile", dest="mobile", action="store_true",
            help="Imitate smartphone through HTTP User-Agent header")
@@ -772,6 +775,9 @@ def cmdLineParser(argv=None):
        miscellaneous.add_argument("--no-logging", dest="noLogging", action="store_true",
            help="Disable logging to a file")
        miscellaneous.add_argument("--no-truncate", dest="noTruncate", action="store_true",
            help="Disable console output truncation (e.g. long entr...)")
        miscellaneous.add_argument("--offline", dest="offline", action="store_true",
            help="Work in offline mode (only use session data)")
@@ -1007,6 +1013,10 @@ def cmdLineParser(argv=None):
                argv[i] = ""
            elif argv[i] in DEPRECATED_OPTIONS:
                argv[i] = ""
            elif argv[i] in ("-s", "--silent"):
                if i + 1 < len(argv) and argv[i + 1].startswith('-') or i + 1 == len(argv):
                    argv[i] = ""
                    conf.verbose = 0
            elif argv[i].startswith("--data-raw"):
                argv[i] = argv[i].replace("--data-raw", "--data", 1)
            elif argv[i].startswith("--auth-creds"):
@@ -1015,7 +1025,6 @@ def cmdLineParser(argv=None):
                argv[i] = argv[i].replace("--drop-cookie", "--drop-set-cookie", 1)
            elif re.search(r"\A--tamper[^=\s]", argv[i]):
                argv[i] = ""
                continue
            elif re.search(r"\A(--(tamper|ignore-code|skip))(?!-)", argv[i]):
                key = re.search(r"\-?\-(\w+)\b", argv[i]).group(1)
                index = auxIndexes.get(key, None)
--- a/lib/request/comparison.py
+++ b/lib/request/comparison.py
@@ -21,7 +21,9 @@ from lib.core.data import conf
 from lib.core.data import kb
 from lib.core.data import logger
 from lib.core.exception import SqlmapNoneDataException
 from lib.core.exception import SqlmapSilentQuitException
 from lib.core.settings import DEFAULT_PAGE_ENCODING
 from lib.core.settings import DEV_EMAIL_ADDRESS
 from lib.core.settings import DIFF_TOLERANCE
 from lib.core.settings import HTML_TITLE_REGEX
 from lib.core.settings import LOWER_RATIO_BOUND
@@ -35,8 +37,14 @@ from lib.core.threads import getCurrentThreadData
 from thirdparty import six
 def comparison(page, headers, code=None, getRatioValue=False, pageLength=None):
-    _ = _adjust(_comparison(page, headers, code, getRatioValue, pageLength), getRatioValue)
+    try:
-    return _
+        _ = _adjust(_comparison(page, headers, code, getRatioValue, pageLength), getRatioValue)
        return _
    except:
        warnMsg = "there was a KNOWN issue inside the internals regarding the difflib/comparison of pages. "
        warnMsg += "Please report details privately via e-mail to '%s'" % DEV_EMAIL_ADDRESS
        logger.critical(warnMsg)
        raise SqlmapSilentQuitException
 def _adjust(condition, getRatioValue):
    if not any((conf.string, conf.notString, conf.regexp, conf.code)):
@@ -120,7 +128,7 @@ def _comparison(page, headers, code, getRatioValue, pageLength):
        if isinstance(seqMatcher.a, six.binary_type) and isinstance(page, six.text_type):
            page = getBytes(page, kb.pageEncoding or DEFAULT_PAGE_ENCODING, "ignore")
        elif isinstance(seqMatcher.a, six.text_type) and isinstance(page, six.binary_type):
-            seqMatcher.a = getBytes(seqMatcher.a, kb.pageEncoding or DEFAULT_PAGE_ENCODING, "ignore")
+            seqMatcher.set_seq1(getBytes(seqMatcher.a, kb.pageEncoding or DEFAULT_PAGE_ENCODING, "ignore"))
        if any(_ is None for _ in (page, seqMatcher.a)):
            return None
@@ -146,12 +154,19 @@ def _comparison(page, headers, code, getRatioValue, pageLength):
            if seq1 is None or seq2 is None:
                return None
-            seq1 = seq1.replace(REFLECTED_VALUE_MARKER, "")
+            if isinstance(seq1, six.binary_type):
-            seq2 = seq2.replace(REFLECTED_VALUE_MARKER, "")
+                seq1 = seq1.replace(REFLECTED_VALUE_MARKER.encode(), b"")
            elif isinstance(seq1, six.text_type):
                seq1 = seq1.replace(REFLECTED_VALUE_MARKER, "")
            if isinstance(seq2, six.binary_type):
                seq2 = seq2.replace(REFLECTED_VALUE_MARKER.encode(), b"")
            elif isinstance(seq2, six.text_type):
                seq2 = seq2.replace(REFLECTED_VALUE_MARKER, "")
            if kb.heavilyDynamic:
-                seq1 = seq1.split("\n")
+                seq1 = seq1.split("\n" if isinstance(seq1, six.text_type) else b"\n")
-                seq2 = seq2.split("\n")
+                seq2 = seq2.split("\n" if isinstance(seq2, six.text_type) else b"\n")
                key = None
            else:
--- a/lib/request/connect.py
+++ b/lib/request/connect.py
@@ -62,6 +62,7 @@ from lib.core.common import unsafeVariableNaming
 from lib.core.common import urldecode
 from lib.core.common import urlencode
 from lib.core.common import wasLastResponseDelayed
 from lib.core.compat import LooseVersion
 from lib.core.compat import patchHeaders
 from lib.core.compat import xrange
 from lib.core.convert import encodeBase64
@@ -90,6 +91,7 @@ from lib.core.enums import WEB_PLATFORM
 from lib.core.exception import SqlmapCompressionException
 from lib.core.exception import SqlmapConnectionException
 from lib.core.exception import SqlmapGenericException
 from lib.core.exception import SqlmapMissingDependence
 from lib.core.exception import SqlmapSkipTargetException
 from lib.core.exception import SqlmapSyntaxException
 from lib.core.exception import SqlmapTokenException
@@ -108,6 +110,7 @@ from lib.core.settings import IS_WIN
 from lib.core.settings import JAVASCRIPT_HREF_REGEX
 from lib.core.settings import LARGE_READ_TRIM_MARKER
 from lib.core.settings import LIVE_COOKIES_TIMEOUT
 from lib.core.settings import MIN_HTTPX_VERSION
 from lib.core.settings import MAX_CONNECTION_READ_SIZE
 from lib.core.settings import MAX_CONNECTIONS_REGEX
 from lib.core.settings import MAX_CONNECTION_TOTAL_SIZE
@@ -603,11 +606,6 @@ class Connect(object):
                if not chunked:
                    requestMsg += "\r\n"
                if not multipart:
                    threadData.lastRequestMsg = requestMsg
                    logger.log(CUSTOM_LOGGING.TRAFFIC_OUT, requestMsg)
                if conf.cj:
                    for cookie in conf.cj:
                        if cookie.value is None:
@@ -616,7 +614,54 @@ class Connect(object):
                            for char in (r"\r", r"\n"):
                                cookie.value = re.sub(r"(%s)([^ \t])" % char, r"\g<1>\t\g<2>", cookie.value)
-                conn = _urllib.request.urlopen(req)
+                if conf.http2:
                    try:
                        import httpx
                    except ImportError:
                        raise SqlmapMissingDependence("httpx[http2] not available (e.g. 'pip%s install httpx[http2]')" % ('3' if six.PY3 else ""))
                    if LooseVersion(httpx.__version__) < LooseVersion(MIN_HTTPX_VERSION):
                        raise SqlmapMissingDependence("outdated version of httpx detected (%s<%s)" % (httpx.__version__, MIN_HTTPX_VERSION))
                    try:
                        proxy_mounts = dict(("%s://" % key, httpx.HTTPTransport(proxy="%s%s" % ("http://" if not "://" in kb.proxies[key] else "", kb.proxies[key]))) for key in kb.proxies) if kb.proxies else None
                        with httpx.Client(verify=False, http2=True, timeout=timeout, follow_redirects=True, cookies=conf.cj, mounts=proxy_mounts) as client:
                            conn = client.request(method or (HTTPMETHOD.POST if post is not None else HTTPMETHOD.GET), url, headers=headers, data=post)
                    except (httpx.HTTPError, httpx.InvalidURL, httpx.CookieConflict, httpx.StreamError) as ex:
                        raise _http_client.HTTPException(getSafeExString(ex))
                    else:
                        conn.code = conn.status_code
                        conn.msg = conn.reason_phrase
                        conn.info = lambda c=conn: c.headers
                        conn._read_buffer = conn.read()
                        conn._read_offset = 0
                        requestMsg = re.sub(" HTTP/[0-9.]+\r\n", " %s\r\n" % conn.http_version, requestMsg, count=1)
                        if not multipart:
                            threadData.lastRequestMsg = requestMsg
                            logger.log(CUSTOM_LOGGING.TRAFFIC_OUT, requestMsg)
                        def _read(count=None):
                            offset = conn._read_offset
                            if count is None:
                                result = conn._read_buffer[offset:]
                                conn._read_offset = len(conn._read_buffer)
                            else:
                                result = conn._read_buffer[offset: offset + count]
                                conn._read_offset += len(result)
                            return result
                        conn.read = _read
                else:
                    if not multipart:
                        threadData.lastRequestMsg = requestMsg
                        logger.log(CUSTOM_LOGGING.TRAFFIC_OUT, requestMsg)
                    conn = _urllib.request.urlopen(req)
                if not kb.authHeader and getRequestHeader(req, HTTP_HEADER.AUTHORIZATION) and (conf.authType or "").lower() == AUTH_TYPE.BASIC.lower():
                    kb.authHeader = getUnicode(getRequestHeader(req, HTTP_HEADER.AUTHORIZATION))
@@ -699,7 +744,7 @@ class Connect(object):
            # Explicit closing of connection object
            if conn and not conf.keepAlive:
                try:
-                    if hasattr(conn.fp, '_sock'):
+                    if hasattr(conn, "fp") and hasattr(conn.fp, '_sock'):
                        conn.fp._sock.close()
                    conn.close()
                except Exception as ex:
@@ -1198,7 +1243,7 @@ class Connect(object):
                    warnMsg += ". sqlmap is going to retry the request"
                    logger.warning(warnMsg)
-                page, headers, code = Connect.getPage(url=conf.csrfUrl or conf.url, data=conf.csrfData or (conf.data if conf.csrfUrl == conf.url else None), method=conf.csrfMethod or (conf.method if conf.csrfUrl == conf.url else None), cookie=conf.parameters.get(PLACE.COOKIE), direct=True, silent=True, ua=conf.parameters.get(PLACE.USER_AGENT), referer=conf.parameters.get(PLACE.REFERER), host=conf.parameters.get(PLACE.HOST))
+                page, headers, code = Connect.getPage(url=conf.csrfUrl or conf.url, post=conf.csrfData or (conf.data if conf.csrfUrl == conf.url else None), method=conf.csrfMethod or (conf.method if conf.csrfUrl == conf.url else None), cookie=conf.parameters.get(PLACE.COOKIE), direct=True, silent=True, ua=conf.parameters.get(PLACE.USER_AGENT), referer=conf.parameters.get(PLACE.REFERER), host=conf.parameters.get(PLACE.HOST))
                page = urldecode(page)  # for anti-CSRF tokens with special characters in their name (e.g. 'foo:bar=...')
                match = re.search(r"(?i)<input[^>]+\bname=[\"']?(?P<name>%s)\b[^>]*\bvalue=[\"']?(?P<value>[^>'\"]*)" % conf.csrfToken, page or "", re.I)
--- a/lib/request/httpshandler.py
+++ b/lib/request/httpshandler.py
@@ -79,7 +79,8 @@ class HTTPSConnection(_http_client.HTTPSConnection):
                        try:
                            # Reference(s): https://askubuntu.com/a/1263098
                            #               https://askubuntu.com/a/1250807
-                            _contexts[protocol].set_ciphers("DEFAULT@SECLEVEL=1")
+                            #               https://git.zknt.org/mirror/bazarr/commit/7f05f932ffb84ba8b9e5630b2adc34dbd77e2b4a?style=split&whitespace=show-all&show-outdated=
                            _contexts[protocol].set_ciphers("ALL@SECLEVEL=0")
                        except (ssl.SSLError, AttributeError):
                            pass
                    result = _contexts[protocol].wrap_socket(sock, do_handshake_on_connect=True, server_hostname=self.host if re.search(r"\A[\d.]+\Z", self.host or "") is None else None)
--- a/lib/techniques/error/use.py
+++ b/lib/techniques/error/use.py
@@ -257,7 +257,7 @@ def _errorFields(expression, expressionFields, expressionFieldsList, num=None, e
            elif output is not None and not (threadData.resumed and kb.suppressResumeInfo) and not (emptyFields and field in emptyFields):
                status = "[%s] [INFO] %s: '%s'" % (time.strftime("%X"), "resumed" if threadData.resumed else "retrieved", output if kb.safeCharEncode else safecharencode(output))
-                if len(status) > width:
+                if len(status) > width and not conf.noTruncate:
                    status = "%s..." % status[:width - 3]
                dataToStdout("%s\n" % status)
--- a/lib/techniques/union/use.py
+++ b/lib/techniques/union/use.py
@@ -418,7 +418,7 @@ def unionUse(expression, unpack=True, dump=False):
                                    _ = ','.join("'%s'" % _ for _ in (flattenValue(arrayizeValue(items)) if not isinstance(items, six.string_types) else [items]))
                                    status = "[%s] [INFO] %s: %s" % (time.strftime("%X"), "resumed" if threadData.resumed else "retrieved", _ if kb.safeCharEncode else safecharencode(_))
-                                    if len(status) > width:
+                                    if len(status) > width and not conf.noTruncate:
                                        status = "%s..." % status[:width - 3]
                                    dataToStdout("%s\n" % status)
--- a/lib/utils/deps.py
+++ b/lib/utils/deps.py
@@ -94,6 +94,16 @@ def checkDependencies():
        logger.warning(warnMsg)
        missing_libraries.add('python-ntlm')
    try:
        __import__("httpx")
        debugMsg = "'httpx[http2]' third-party library is found"
        logger.debug(debugMsg)
    except ImportError:
        warnMsg = "sqlmap requires 'httpx[http2]' third-party library "
        warnMsg += "if you plan to use HTTP version 2"
        logger.warning(warnMsg)
        missing_libraries.add('httpx[http2]')
    try:
        __import__("websocket._abnf")
        debugMsg = "'websocket-client' library is found"
--- a/plugins/dbms/h2/fingerprint.py
+++ b/plugins/dbms/h2/fingerprint.py
@@ -93,7 +93,7 @@ class Fingerprint(GenericFingerprint):
            infoMsg = "confirming %s" % DBMS.H2
            logger.info(infoMsg)
-            result = inject.checkBooleanExpression("ROUNDMAGIC(PI())>=3")
+            result = inject.checkBooleanExpression("LEAST(ROUNDMAGIC(PI()),3)=3")
            if not result:
                warnMsg = "the back-end DBMS is not %s" % DBMS.H2
--- a/plugins/dbms/hsqldb/fingerprint.py
+++ b/plugins/dbms/hsqldb/fingerprint.py
@@ -99,7 +99,7 @@ class Fingerprint(GenericFingerprint):
            infoMsg = "confirming %s" % DBMS.HSQLDB
            logger.info(infoMsg)
-            result = inject.checkBooleanExpression("ROUNDMAGIC(PI())>=3")
+            result = inject.checkBooleanExpression("LEAST(ROUNDMAGIC(PI()),3)=3")
            if not result:
                warnMsg = "the back-end DBMS is not %s" % DBMS.HSQLDB
--- a/plugins/dbms/mysql/fingerprint.py
+++ b/plugins/dbms/mysql/fingerprint.py
@@ -45,10 +45,14 @@ class Fingerprint(GenericFingerprint):
        # Reference: https://dev.mysql.com/doc/relnotes/mysql/<major>.<minor>/en/
        versions = (
            (90200, 90202),  # MySQL 9.2
            (90100, 90102),  # MySQL 9.1
            (90000, 90002),  # MySQL 9.0
            (80400, 80405),  # MySQL 8.4
            (80300, 80302),  # MySQL 8.3
            (80200, 80202),  # MySQL 8.2
            (80100, 80102),  # MySQL 8.1
-            (80000, 80037),  # MySQL 8.0
+            (80000, 80041),  # MySQL 8.0
            (60000, 60014),  # MySQL 6.0
            (50700, 50745),  # MySQL 5.7
            (50600, 50652),  # MySQL 5.6
@@ -204,8 +208,14 @@ class Fingerprint(GenericFingerprint):
            kb.data.has_information_schema = True
            # Determine if it is MySQL >= 9.0.0
            if inject.checkBooleanExpression("ISNULL(VECTOR_DIM(NULL))"):
                Backend.setVersion(">= 9.0.0")
                setDbms("%s 9" % DBMS.MYSQL)
                self.getBanner()
            # Determine if it is MySQL >= 8.0.0
-            if inject.checkBooleanExpression("ISNULL(JSON_STORAGE_FREE(NULL))"):
+            elif inject.checkBooleanExpression("ISNULL(JSON_STORAGE_FREE(NULL))"):
                Backend.setVersion(">= 8.0.0")
                setDbms("%s 8" % DBMS.MYSQL)
                self.getBanner()
--- a/plugins/dbms/postgresql/fingerprint.py
+++ b/plugins/dbms/postgresql/fingerprint.py
@@ -133,7 +133,9 @@ class Fingerprint(GenericFingerprint):
            infoMsg = "actively fingerprinting %s" % DBMS.PGSQL
            logger.info(infoMsg)
-            if inject.checkBooleanExpression("RANDOM_NORMAL(0.0, 1.0) IS NOT NULL"):
+            if inject.checkBooleanExpression("JSON_QUERY(NULL::jsonb, '$') IS NULL"):
                Backend.setVersion(">= 17.0")
            elif inject.checkBooleanExpression("RANDOM_NORMAL(0.0, 1.0) IS NOT NULL"):
                Backend.setVersion(">= 16.0")
            elif inject.checkBooleanExpression("REGEXP_COUNT(NULL,NULL) IS NULL"):
                Backend.setVersion(">= 15.0")
--- a/sqlmap.conf
+++ b/sqlmap.conf
@@ -61,6 +61,10 @@ loadCookies =
 # Valid: True or False
 dropSetCookie = False
 # Use HTTP version 2 (experimental).
 # Valid: True or False
 http2 = False
 # HTTP User-Agent header value. Useful to fake the HTTP User-Agent header value
 # at each HTTP request.
 # sqlmap will also test for SQL injection on the HTTP User-Agent value.
@@ -869,6 +873,10 @@ listTampers = False
 # Valid: True or False
 noLogging = False
 # Disable console output truncation.
 # Valid: True or False
 noTruncate = False
 # Work in offline mode (only use session data)
 # Valid: True or False
 offline = False
--- a/sqlmap.py
+++ b/sqlmap.py
@@ -543,7 +543,7 @@ def main():
        errMsg = maskSensitiveData(errMsg)
        excMsg = maskSensitiveData(excMsg)
-        if conf.get("api") or not valid:
+        if conf.get("api") or not valid or kb.lastCtrlCTime:
            logger.critical("%s\n%s" % (errMsg, excMsg))
        else:
            logger.critical(errMsg)
--- a/tamper/0eunion.py
+++ b/tamper/0eunion.py
@@ -16,7 +16,7 @@ def dependencies():
 def tamper(payload, **kwargs):
    """
-    Replaces instances of <int> UNION with <int>e0UNION
+    Replaces an integer followed by UNION with an integer followed by e0UNION
    Requirement:
        * MySQL
--- a/tamper/apostrophemask.py
+++ b/tamper/apostrophemask.py
@@ -14,7 +14,7 @@ def dependencies():
 def tamper(payload, **kwargs):
    """
-    Replaces apostrophe character (') with its UTF-8 full width counterpart (e.g. ' -> %EF%BC%87)
+    Replaces single quotes (') with their UTF-8 full-width equivalents (e.g. ' -> %EF%BC%87)
    References:
        * http://www.utf8-chartable.de/unicode-utf8-table.pl?start=65280&number=128
--- a/tamper/apostrophenullencode.py
+++ b/tamper/apostrophenullencode.py
@@ -14,7 +14,7 @@ def dependencies():
 def tamper(payload, **kwargs):
    """
-    Replaces apostrophe character (') with its illegal double unicode counterpart (e.g. ' -> %00%27)
+    Replaces single quotes (') with an illegal double Unicode encoding (e.g. ' -> %00%27)
    >>> tamper("1 AND '1'='1")
    '1 AND %00%271%00%27=%00%271'
--- a/tamper/appendnullbyte.py
+++ b/tamper/appendnullbyte.py
@@ -18,7 +18,7 @@ def dependencies():
 def tamper(payload, **kwargs):
    """
-    Appends (Access) NULL byte character (%00) at the end of payload
+    Appends an (Access) NULL byte character (%00) at the end of payload
    Requirement:
        * Microsoft Access
--- a/tamper/base64encode.py
+++ b/tamper/base64encode.py
@@ -15,7 +15,7 @@ def dependencies():
 def tamper(payload, **kwargs):
    """
-    Base64-encodes all characters in a given payload
+    Encodes the entire payload using Base64
    >>> tamper("1' AND SLEEP(5)#")
    'MScgQU5EIFNMRUVQKDUpIw=='
--- a/tamper/between.py
+++ b/tamper/between.py
@@ -16,7 +16,7 @@ def dependencies():
 def tamper(payload, **kwargs):
    """
-    Replaces greater than operator ('>') with 'NOT BETWEEN 0 AND #' and equals operator ('=') with 'BETWEEN # AND #'
+    Replaces the greater-than operator (>) with NOT BETWEEN 0 AND # and the equal sign (=) with BETWEEN # AND #
    Tested against:
        * Microsoft SQL Server 2005
--- a/tamper/binary.py
+++ b/tamper/binary.py
@@ -16,7 +16,7 @@ def dependencies():
 def tamper(payload, **kwargs):
    """
-    Injects keyword binary where possible
+    Injects the keyword binary where applicable
    Requirement:
        * MySQL
--- a/tamper/bluecoat.py
+++ b/tamper/bluecoat.py
@@ -17,7 +17,7 @@ def dependencies():
 def tamper(payload, **kwargs):
    """
-    Replaces space character after SQL statement with a valid random blank character. Afterwards replace character '=' with operator LIKE
+    Replaces the space following an SQL statement with a random valid blank character, then converts = to LIKE
    Requirement:
        * Blue Coat SGOS with WAF activated as documented in
--- a/tamper/chardoubleencode.py
+++ b/tamper/chardoubleencode.py
@@ -16,7 +16,7 @@ def dependencies():
 def tamper(payload, **kwargs):
    """
-    Double URL-encodes all characters in a given payload (not processing already encoded) (e.g. SELECT -> %2553%2545%254C%2545%2543%2554)
+    Double URL-encodes each character in the payload (ignores already encoded ones) (e.g. SELECT -> %2553%2545%254C%2545%2543%2554)
    Notes:
        * Useful to bypass some weak web application firewalls that do not double URL-decode the request before processing it through their ruleset
--- a/tamper/luanginxmore.py
+++ b/tamper/luanginxmore.py
@@ -0,0 +1,39 @@
 #!/usr/bin/env python
 """
 Copyright (c) 2006-2025 sqlmap developers (https://sqlmap.org/)
 See the file 'LICENSE' for copying permission
 """
 import random
 import string
 import os
 from lib.core.compat import xrange
 from lib.core.common import singleTimeWarnMessage
 from lib.core.enums import HINT
 from lib.core.enums import PRIORITY
 from lib.core.settings import DEFAULT_GET_POST_DELIMITER
 __priority__ = PRIORITY.HIGHEST
 def dependencies():
    singleTimeWarnMessage("tamper script '%s' is only meant to be run on POST requests" % (os.path.basename(__file__).split(".")[0]))
 def tamper(payload, **kwargs):
    """
    LUA-Nginx WAFs Bypass (e.g. Cloudflare) with 4.2 million parameters
    Reference:
        * https://opendatasecurity.io/cloudflare-vulnerability-allows-waf-be-disabled/
    Notes:
        * Lua-Nginx WAFs do not support processing of huge number of parameters
    """
    hints = kwargs.get("hints", {})
    delimiter = kwargs.get("delimiter", DEFAULT_GET_POST_DELIMITER)
    hints[HINT.PREPEND] = delimiter.join("%s=" % "".join(random.sample(string.ascii_letters + string.digits, 2)) for _ in xrange(4194304))
    return payload
--- a/tamper/randomcomments.py
+++ b/tamper/randomcomments.py
@@ -16,7 +16,7 @@ __priority__ = PRIORITY.LOW
 def tamper(payload, **kwargs):
    """
-    Add random inline comments inside SQL keywords (e.g. SELECT -> S/**/E/**/LECT)
+    Inserts random inline comments within SQL keywords (e.g. SELECT -> S/**/E/**/LECT)
    >>> import random
    >>> random.seed(0)
--- a/thirdparty/six/init.py
+++ b/thirdparty/six/init.py
@@ -1,4 +1,4 @@
-# Copyright (c) 2010-2020 Benjamin Peterson
+# Copyright (c) 2010-2024 Benjamin Peterson
 #
 # Permission is hereby granted, free of charge, to any person obtaining a copy
 # of this software and associated documentation files (the "Software"), to deal
@@ -29,7 +29,7 @@ import sys
 import types
 __author__ = "Benjamin Peterson <benjamin@python.org>"
-__version__ = "1.16.0"
+__version__ = "1.17.0"
 # Useful for very coarse version differentiation.
@@ -435,12 +435,17 @@ _urllib_request_moved_attributes = [
    MovedAttribute("HTTPErrorProcessor", "urllib2", "urllib.request"),
    MovedAttribute("urlretrieve", "urllib", "urllib.request"),
    MovedAttribute("urlcleanup", "urllib", "urllib.request"),
    MovedAttribute("URLopener", "urllib", "urllib.request"),
    MovedAttribute("FancyURLopener", "urllib", "urllib.request"),
    MovedAttribute("proxy_bypass", "urllib", "urllib.request"),
    MovedAttribute("parse_http_list", "urllib2", "urllib.request"),
    MovedAttribute("parse_keqv_list", "urllib2", "urllib.request"),
 ]
 if sys.version_info[:2] < (3, 14):
    _urllib_request_moved_attributes.extend(
        [
            MovedAttribute("URLopener", "urllib", "urllib.request"),
            MovedAttribute("FancyURLopener", "urllib", "urllib.request"),
        ]
    )
 for attr in _urllib_request_moved_attributes:
    setattr(Module_six_moves_urllib_request, attr.name, attr)
 del attr
Author	SHA1	Message	Date
Miroslav Stampar	c2f0ca314c	Minor update of fingerprint data for MySQL	2025-05-07 10:42:51 +02:00
Miroslav Stampar	663ab4a544	Minor update of fingerprinting in H2 and HSQLDB	2025-04-28 16:56:17 +02:00
Miroslav Stampar	c8c7feebb0	Fixes #5886	2025-04-05 14:41:45 +02:00
Miroslav Stampar	29825cd5d6	Minor patch	2025-04-01 10:29:33 +02:00
Miroslav Stampar	bb725d222c	Fixes #5885	2025-04-01 10:26:19 +02:00
Miroslav Stampar	04b293d44f	Fix related to #5881	2025-03-28 10:11:43 +01:00
Kenny Strawn	1b4fb3a86d	Add luanginxmore tamper script (#5881 ) * Add luanginxmore tamper script POST requests can accept far more parameters than GET requests, so for additional evasion, it's nice to have something capable of overwhelming a WAF with millions of parameters, not just hundreds. Tested against public bug bounty programs with great success. * Fix syntax error Oops, forgot an extra closing parenthesis * Fix missing imports	2025-03-28 10:09:42 +01:00
Miroslav Stampar	23dda1022d	Minor update	2025-03-19 10:16:49 +01:00
Miroslav Stampar	6c108d96a0	Minor update regarding the #5863	2025-03-14 13:59:42 +01:00
Miroslav Stampar	28c838a9f0	Dummy update	2025-03-12 16:01:21 +01:00
Miroslav Stampar	a9cae82950	Minor update for the automatic reporting	2025-03-12 16:00:43 +01:00
Miroslav Stampar	772eaa2aee	Minor patch	2025-02-26 17:36:02 +01:00
Miroslav Stampar	efd5e2b62b	Patch related to the #4462	2025-02-26 16:43:59 +01:00
Miroslav Stampar	a1fc4da3eb	Update of six third-party library	2025-02-21 12:13:05 +01:00
Miroslav Stampar	c0ad1092cb	Minor patch	2025-02-20 23:57:13 +01:00
Miroslav Stampar	ab5d5b3401	Minor update (adding support for silent mode)	2025-02-20 23:50:20 +01:00
Miroslav Stampar	d058cc820d	Minor fixes for --http2 (#4402 )	2025-02-20 23:32:58 +01:00
Miroslav Stampar	327f98aaa3	Implement experimental --http2 (#4402 )	2025-02-20 13:03:47 +01:00
Miroslav Stampar	fa9dc20c6e	Minor update	2025-02-19 14:11:03 +01:00
Miroslav Stampar	25925961ba	Fixes #5856	2025-02-18 10:50:50 +01:00
Miroslav Stampar	ff249d24c7	Fixes #5857	2025-02-18 10:31:35 +01:00
Miroslav Stampar	4dd98cc8f3	Minor update of fingerprinting methods	2025-02-10 23:17:16 +01:00
Miroslav Stampar	f144f10ebe	Minor improvement to Set-Cookie detection	2025-02-10 22:59:05 +01:00
Miroslav Stampar	900c9497d9	Minor improvement for _linux_wav_play	2025-02-10 22:47:30 +01:00
Miroslav Stampar	4faaabf795	Minor improvement for _mac_wav_play	2025-02-10 22:42:18 +01:00
Miroslav Stampar	d9a5236d8e	Update of CHANGELOG	2025-02-10 22:20:56 +01:00
Miroslav Stampar	ef10844eab	Bump python-version for GitHub tests	2025-02-10 22:06:10 +01:00