sqlmap/plugins/dbms/oracle/syntax.py

#!/usr/bin/env python

"""
$Id$

This file is part of the sqlmap project, http://sqlmap.sourceforge.net.

Copyright (c) 2007-2010 Bernardo Damele A. G. <bernardo.damele@gmail.com>
Copyright (c) 2006 Daniele Bellucci <daniele.bellucci@gmail.com>

sqlmap is free software; you can redistribute it and/or modify it under
the terms of the GNU General Public License as published by the Free
Software Foundation version 2 of the License.

sqlmap is distributed in the hope that it will be useful, but WITHOUT ANY
WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS
FOR A PARTICULAR PURPOSE.  See the GNU General Public License for more
details.

You should have received a copy of the GNU General Public License along
with sqlmap; if not, write to the Free Software Foundation, Inc., 51
Franklin St, Fifth Floor, Boston, MA  02110-1301  USA
"""

from lib.core.exception import sqlmapSyntaxException
from plugins.generic.syntax import Syntax as GenericSyntax

class Syntax(GenericSyntax):
    def __init__(self):
        GenericSyntax.__init__(self)

    @staticmethod
    def unescape(expression, quote=True):
        if quote:
            while True:
                index = expression.find("'")
                if index == -1:
                    break

                firstIndex = index + 1
                index = expression[firstIndex:].find("'")

                if index == -1:
                    raise sqlmapSyntaxException, "Unenclosed ' in '%s'" % expression

                lastIndex = firstIndex + index
                old = "'%s'" % expression[firstIndex:lastIndex]
                #unescaped = "("
                unescaped = ""

                for i in range(firstIndex, lastIndex):
                    unescaped += "CHR(%d)" % (ord(expression[i]))
                    if i < lastIndex - 1:
                        unescaped += "||"

                #unescaped += ")"
                expression = expression.replace(old, unescaped)
        else:
            expression = "||".join("CHR(%d)" % ord(c) for c in expression)

        return expression

    @staticmethod
    def escape(expression):
        while True:
            index = expression.find("CHR(")
            if index == -1:
                break

            firstIndex = index
            index = expression[firstIndex:].find("))")

            if index == -1:
                raise sqlmapSyntaxException, "Unenclosed ) in '%s'" % expression

            lastIndex = firstIndex + index + 1
            old = expression[firstIndex:lastIndex]
            oldUpper = old.upper()
            oldUpper = oldUpper.replace("CHR(", "").replace(")", "")
            oldUpper = oldUpper.split("||")

            escaped = "'%s'" % "".join([chr(int(char)) for char in oldUpper])
            expression = expression.replace(old, escaped)

        return expression
Major code refactoring: moved and split plugins (mysql, pgsql, mssql, oracle) more granularly and organized. Todo for firebird, sqlite, access. 2010-03-23 01:57:57 +03:00			`#!/usr/bin/env python`

			`"""`
			$Id$

			`This file is part of the sqlmap project, http://sqlmap.sourceforge.net.`

			`Copyright (c) 2007-2010 Bernardo Damele A. G. <bernardo.damele@gmail.com>`
			`Copyright (c) 2006 Daniele Bellucci <daniele.bellucci@gmail.com>`

			`sqlmap is free software; you can redistribute it and/or modify it under`
			`the terms of the GNU General Public License as published by the Free`
			`Software Foundation version 2 of the License.`

			`sqlmap is distributed in the hope that it will be useful, but WITHOUT ANY`
			`WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS`
			`FOR A PARTICULAR PURPOSE. See the GNU General Public License for more`
			`details.`

			`You should have received a copy of the GNU General Public License along`
			`with sqlmap; if not, write to the Free Software Foundation, Inc., 51`
			`Franklin St, Fifth Floor, Boston, MA 02110-1301 USA`
			`"""`

			`from lib.core.exception import sqlmapSyntaxException`
			`from plugins.generic.syntax import Syntax as GenericSyntax`

			`class Syntax(GenericSyntax):`
			`def __init__(self):`
			`GenericSyntax.__init__(self)`

			`@staticmethod`
			`def unescape(expression, quote=True):`
			`if quote:`
			`while True:`
			`index = expression.find("'")`
			`if index == -1:`
			`break`

			`firstIndex = index + 1`
			`index = expression[firstIndex:].find("'")`

			`if index == -1:`
			`raise sqlmapSyntaxException, "Unenclosed ' in '%s'" % expression`

			`lastIndex = firstIndex + index`
			`old = "'%s'" % expression[firstIndex:lastIndex]`
			`#unescaped = "("`
			`unescaped = ""`

			`for i in range(firstIndex, lastIndex):`
			`unescaped += "CHR(%d)" % (ord(expression[i]))`
			`if i < lastIndex - 1:`
			`unescaped += "\|\|"`

			`#unescaped += ")"`
			`expression = expression.replace(old, unescaped)`
			`else:`
			`expression = "\|\|".join("CHR(%d)" % ord(c) for c in expression)`

			`return expression`

			`@staticmethod`
			`def escape(expression):`
			`while True:`
			`index = expression.find("CHR(")`
			`if index == -1:`
			`break`

			`firstIndex = index`
			`index = expression[firstIndex:].find("))")`

			`if index == -1:`
			`raise sqlmapSyntaxException, "Unenclosed ) in '%s'" % expression`

			`lastIndex = firstIndex + index + 1`
			`old = expression[firstIndex:lastIndex]`
			`oldUpper = old.upper()`
			`oldUpper = oldUpper.replace("CHR(", "").replace(")", "")`
			`oldUpper = oldUpper.split("\|\|")`

			`escaped = "'%s'" % "".join([chr(int(char)) for char in oldUpper])`
			`expression = expression.replace(old, escaped)`

			`return expression`