sqlmap/lib/utils/parenthesis.py

#!/usr/bin/env python

"""
$Id$

Copyright (c) 2006-2010 sqlmap developers (http://sqlmap.sourceforge.net/)
See the file doc/COPYING for copying permission.
"""

from lib.core.agent import agent
from lib.core.common import getInjectionCase
from lib.core.common import randomInt
from lib.core.common import randomStr
from lib.core.data import conf
from lib.core.data import kb
from lib.core.data import logger
from lib.core.exception import sqlmapNoneDataException
from lib.core.session import setParenthesis
from lib.request.connect import Connect as Request

def checkForParenthesis():
    """
    This method checks if the SQL injection affected parameter
    is within the parenthesis.
    """

    logMsg = "testing for parenthesis on injectable parameter"
    logger.info(logMsg)

    logic = conf.logic
    count = 0
    case = getInjectionCase(kb.injType)

    if case is None:
        raise sqlmapNoneDataException, "unsupported injection type"

    if kb.parenthesis is not None:
        return

    if conf.prefix or conf.postfix:
        kb.parenthesis = 0
        return

    for parenthesis in range(1, 4):
        randInt = randomInt()
        randStr = randomStr()

        query  = case.usage.prefix.format % eval(case.usage.prefix.params) +\
            case.usage.postfix.format % eval(case.usage.postfix.params)

        payload = agent.payload(newValue=query)
        result = Request.queryPage(payload)

        if result:
            count = parenthesis

    logMsg = "the injectable parameter requires %d parenthesis" % count
    logger.info(logMsg)

    setParenthesis(count)
After the storm, a restore.. 2008-10-15 19:38:22 +04:00			`#!/usr/bin/env python`

			`"""`
propsets.. 2008-10-15 19:56:32 +04:00			$Id$
After the storm, a restore.. 2008-10-15 19:38:22 +04:00
large commit with copyright header modifications 2010-10-14 18:41:14 +04:00			`Copyright (c) 2006-2010 sqlmap developers (http://sqlmap.sourceforge.net/)`
			`See the file doc/COPYING for copying permission.`
After the storm, a restore.. 2008-10-15 19:38:22 +04:00			`"""`

			`from lib.core.agent import agent`
minor update 2010-10-07 16:21:59 +04:00			`from lib.core.common import getInjectionCase`
After the storm, a restore.. 2008-10-15 19:38:22 +04:00			`from lib.core.common import randomInt`
			`from lib.core.common import randomStr`
sqlmap 0.6.3-rc4: minor enhancement to be able to specify extra HTTP headers by providing option --headers. By default Accept, Accept-Language and Accept-Charset headers are set. Added support to get the injection payload prefix and postfix from user. Minor bug fix to exclude image files when parsing (-l) proxies log files. Minor code adjustments. Updated documentation. 2008-12-09 00:24:24 +03:00			`from lib.core.data import conf`
After the storm, a restore.. 2008-10-15 19:38:22 +04:00			`from lib.core.data import kb`
			`from lib.core.data import logger`
			`from lib.core.exception import sqlmapNoneDataException`
			`from lib.core.session import setParenthesis`
			`from lib.request.connect import Connect as Request`

			`def checkForParenthesis():`
			`"""`
			`This method checks if the SQL injection affected parameter`
			`is within the parenthesis.`
			`"""`

			`logMsg = "testing for parenthesis on injectable parameter"`
			`logger.info(logMsg)`

more changes 2010-10-07 19:34:17 +04:00			`logic = conf.logic`
After the storm, a restore.. 2008-10-15 19:38:22 +04:00			`count = 0`
minor update 2010-10-07 16:21:59 +04:00			`case = getInjectionCase(kb.injType)`

			`if case is None:`
			`raise sqlmapNoneDataException, "unsupported injection type"`
After the storm, a restore.. 2008-10-15 19:38:22 +04:00
sqlmap 0.8-rc3: Merge from Miroslav Stampar's branch fixing a bug when verbosity > 2, another major bug with urlencoding/urldecoding of POST data and Cookies, adding --drop-set-cookie option, implementing support to automatically decode gzip and deflate HTTP responses, support for Google dork page result (--gpage) and a minor code cleanup. 2010-01-02 05:02:12 +03:00			`if kb.parenthesis is not None:`
Minor adjustments and minor bug fixes. Documentation almost complete for sqlmap 0.6.3. 2008-12-12 22:06:31 +03:00			`return`

sqlmap 0.6.3-rc4: minor enhancement to be able to specify extra HTTP headers by providing option --headers. By default Accept, Accept-Language and Accept-Charset headers are set. Added support to get the injection payload prefix and postfix from user. Minor bug fix to exclude image files when parsing (-l) proxies log files. Minor code adjustments. Updated documentation. 2008-12-09 00:24:24 +03:00			`if conf.prefix or conf.postfix:`
Minor adjustments and minor bug fixes. Documentation almost complete for sqlmap 0.6.3. 2008-12-12 22:06:31 +03:00			`kb.parenthesis = 0`
sqlmap 0.6.3-rc4: minor enhancement to be able to specify extra HTTP headers by providing option --headers. By default Accept, Accept-Language and Accept-Charset headers are set. Added support to get the injection payload prefix and postfix from user. Minor bug fix to exclude image files when parsing (-l) proxies log files. Minor code adjustments. Updated documentation. 2008-12-09 00:24:24 +03:00			`return`

After the storm, a restore.. 2008-10-15 19:38:22 +04:00			`for parenthesis in range(1, 4):`
			`randInt = randomInt()`
			`randStr = randomStr()`

more refactoring 2010-10-07 18:05:34 +04:00			`query = case.usage.prefix.format % eval(case.usage.prefix.params) +\`
			`case.usage.postfix.format % eval(case.usage.postfix.params)`
After the storm, a restore.. 2008-10-15 19:38:22 +04:00
			`payload = agent.payload(newValue=query)`
			`result = Request.queryPage(payload)`

sqlmap 0.8-rc3: Merge from Miroslav Stampar's branch fixing a bug when verbosity > 2, another major bug with urlencoding/urldecoding of POST data and Cookies, adding --drop-set-cookie option, implementing support to automatically decode gzip and deflate HTTP responses, support for Google dork page result (--gpage) and a minor code cleanup. 2010-01-02 05:02:12 +03:00			`if result:`
After the storm, a restore.. 2008-10-15 19:38:22 +04:00			`count = parenthesis`

			`logMsg = "the injectable parameter requires %d parenthesis" % count`
			`logger.info(logMsg)`

			`setParenthesis(count)`