2013-02-14 15:32:17 +04:00
|
|
|
#!/usr/bin/env python
|
2010-03-27 02:23:25 +03:00
|
|
|
|
|
|
|
"""
|
2018-01-02 02:48:10 +03:00
|
|
|
Copyright (c) 2006-2018 sqlmap developers (http://sqlmap.org/)
|
2017-10-11 15:50:46 +03:00
|
|
|
See the file 'LICENSE' for copying permission
|
2010-03-27 02:23:25 +03:00
|
|
|
"""
|
|
|
|
|
2010-03-30 03:48:21 +04:00
|
|
|
try:
|
|
|
|
import kinterbasdb
|
2017-09-04 18:05:48 +03:00
|
|
|
except:
|
2010-03-30 03:48:21 +04:00
|
|
|
pass
|
|
|
|
|
2012-10-23 17:34:59 +04:00
|
|
|
import logging
|
|
|
|
|
2012-12-06 14:15:05 +04:00
|
|
|
from lib.core.data import conf
|
2010-03-30 03:48:21 +04:00
|
|
|
from lib.core.data import logger
|
2012-12-06 17:14:19 +04:00
|
|
|
from lib.core.exception import SqlmapConnectionException
|
2011-01-30 14:36:03 +03:00
|
|
|
from lib.core.settings import UNICODE_ENCODING
|
2010-03-27 02:23:25 +03:00
|
|
|
from plugins.generic.connector import Connector as GenericConnector
|
|
|
|
|
|
|
|
class Connector(GenericConnector):
|
|
|
|
"""
|
2010-03-30 03:48:21 +04:00
|
|
|
Homepage: http://kinterbasdb.sourceforge.net/
|
|
|
|
User guide: http://kinterbasdb.sourceforge.net/dist_docs/usage.html
|
2010-03-31 14:50:47 +04:00
|
|
|
Debian package: python-kinterbasdb
|
2010-03-30 03:48:21 +04:00
|
|
|
License: BSD
|
2010-03-27 02:23:25 +03:00
|
|
|
"""
|
|
|
|
|
|
|
|
def __init__(self):
|
|
|
|
GenericConnector.__init__(self)
|
2010-03-30 03:48:21 +04:00
|
|
|
|
2010-06-10 16:02:48 +04:00
|
|
|
# sample usage:
|
|
|
|
# ./sqlmap.py -d "firebird://sysdba:testpass@/opt/firebird/testdb.fdb"
|
|
|
|
# ./sqlmap.py -d "firebird://sysdba:testpass@127.0.0.1:3050//opt/firebird/testdb.fdb"
|
2010-03-31 14:50:47 +04:00
|
|
|
def connect(self):
|
2010-03-30 03:48:21 +04:00
|
|
|
self.initConnection()
|
|
|
|
|
2010-03-31 14:50:47 +04:00
|
|
|
if not self.hostname:
|
|
|
|
self.checkFileDb()
|
|
|
|
|
2010-03-30 03:48:21 +04:00
|
|
|
try:
|
2011-01-30 14:36:03 +03:00
|
|
|
self.connector = kinterbasdb.connect(host=self.hostname.encode(UNICODE_ENCODING), database=self.db.encode(UNICODE_ENCODING), \
|
2013-01-10 16:18:44 +04:00
|
|
|
user=self.user.encode(UNICODE_ENCODING), password=self.password.encode(UNICODE_ENCODING), charset="UTF8") # Reference: http://www.daniweb.com/forums/thread248499.html
|
2010-03-30 03:48:21 +04:00
|
|
|
except kinterbasdb.OperationalError, msg:
|
2013-01-04 02:20:55 +04:00
|
|
|
raise SqlmapConnectionException(msg[1])
|
2013-04-15 16:31:27 +04:00
|
|
|
|
2013-01-18 14:21:23 +04:00
|
|
|
self.initCursor()
|
2013-04-15 16:31:27 +04:00
|
|
|
self.printConnected()
|
2010-03-30 03:48:21 +04:00
|
|
|
|
|
|
|
def fetchall(self):
|
2010-04-06 19:12:52 +04:00
|
|
|
try:
|
|
|
|
return self.cursor.fetchall()
|
|
|
|
except kinterbasdb.OperationalError, msg:
|
2012-10-23 17:34:59 +04:00
|
|
|
logger.log(logging.WARN if conf.dbmsHandler else logging.DEBUG, "(remote) %s" % msg[1])
|
2010-04-06 19:12:52 +04:00
|
|
|
return None
|
2010-03-30 03:48:21 +04:00
|
|
|
|
|
|
|
def execute(self, query):
|
|
|
|
try:
|
|
|
|
self.cursor.execute(query)
|
|
|
|
except kinterbasdb.OperationalError, msg:
|
2012-10-23 17:34:59 +04:00
|
|
|
logger.log(logging.WARN if conf.dbmsHandler else logging.DEBUG, "(remote) %s" % msg[1])
|
2010-03-30 03:48:21 +04:00
|
|
|
except kinterbasdb.Error, msg:
|
2013-01-04 02:20:55 +04:00
|
|
|
raise SqlmapConnectionException(msg[1])
|
2010-03-30 03:48:21 +04:00
|
|
|
|
|
|
|
self.connector.commit()
|
|
|
|
|
|
|
|
def select(self, query):
|
2010-03-31 14:50:47 +04:00
|
|
|
self.execute(query)
|
|
|
|
return self.fetchall()
|