2010-03-31 14:50:47 +04:00
|
|
|
#!/usr/bin/env python
|
|
|
|
|
|
|
|
|
|
"""
|
|
|
|
|
$Id$
|
|
|
|
|
|
2010-10-14 18:41:14 +04:00
|
|
|
Copyright (c) 2006-2010 sqlmap developers (http://sqlmap.sourceforge.net/)
|
2010-10-15 03:18:29 +04:00
|
|
|
See the file 'doc/COPYING' for copying permission
|
2010-03-31 14:50:47 +04:00
|
|
|
"""
|
|
|
|
|
|
|
|
|
|
from lib.core.agent import agent
|
2010-04-12 13:35:20 +04:00
|
|
|
from lib.core.common import dataToSessionFile
|
2010-06-02 16:45:40 +04:00
|
|
|
from lib.core.common import getUnicode
|
2010-04-12 13:35:20 +04:00
|
|
|
from lib.core.convert import base64pickle
|
|
|
|
|
from lib.core.convert import base64unpickle
|
2010-05-29 15:46:41 +04:00
|
|
|
from lib.core.convert import utf8decode
|
2010-03-31 14:50:47 +04:00
|
|
|
from lib.core.data import conf
|
|
|
|
|
from lib.core.data import kb
|
2010-04-12 13:35:20 +04:00
|
|
|
from lib.core.data import logger
|
2010-11-02 14:59:24 +03:00
|
|
|
from lib.core.settings import DBMS
|
2010-03-31 14:50:47 +04:00
|
|
|
from lib.core.settings import SQL_STATEMENTS
|
2010-04-06 19:12:52 +04:00
|
|
|
from lib.utils.timeout import timeout
|
2010-03-31 14:50:47 +04:00
|
|
|
|
|
|
|
|
def direct(query, content=True):
|
|
|
|
|
output = None
|
|
|
|
|
select = False
|
|
|
|
|
query = agent.payloadDirect(query)
|
|
|
|
|
|
2010-11-02 14:59:24 +03:00
|
|
|
if kb.dbms == DBMS.ORACLE and query.startswith("SELECT ") and " FROM " not in query:
|
2010-03-31 14:50:47 +04:00
|
|
|
query = "%s FROM DUAL" % query
|
|
|
|
|
|
|
|
|
|
for sqlTitle, sqlStatements in SQL_STATEMENTS.items():
|
|
|
|
|
for sqlStatement in sqlStatements:
|
|
|
|
|
if query.lower().startswith(sqlStatement) and sqlTitle == "SQL SELECT statement":
|
|
|
|
|
select = True
|
|
|
|
|
break
|
|
|
|
|
|
2010-04-12 13:35:20 +04:00
|
|
|
logger.log(9, query)
|
|
|
|
|
|
|
|
|
|
if not select:
|
2010-04-06 19:51:36 +04:00
|
|
|
output = timeout(func=conf.dbmsConnector.execute, args=(query,), duration=conf.timeout, default=None)
|
2010-04-15 14:06:38 +04:00
|
|
|
elif conf.hostname in kb.resumedQueries and query in kb.resumedQueries[conf.hostname] and "sqlmapoutput" not in query and "sqlmapfile" not in query:
|
2010-10-15 13:39:41 +04:00
|
|
|
try:
|
|
|
|
|
output = base64unpickle(kb.resumedQueries[conf.hostname][query][:-1])
|
|
|
|
|
except:
|
|
|
|
|
output = timeout(func=conf.dbmsConnector.select, args=(query,), duration=conf.timeout, default=None)
|
2010-04-12 13:35:20 +04:00
|
|
|
|
|
|
|
|
infoMsg = "resumed from file '%s': " % conf.sessionFile
|
2010-06-02 16:45:40 +04:00
|
|
|
infoMsg += "%s..." % getUnicode(output)[:20]
|
2010-04-12 13:35:20 +04:00
|
|
|
logger.info(infoMsg)
|
2010-10-15 13:39:41 +04:00
|
|
|
else:
|
2010-04-12 13:35:20 +04:00
|
|
|
output = timeout(func=conf.dbmsConnector.select, args=(query,), duration=conf.timeout, default=None)
|
2010-03-31 14:50:47 +04:00
|
|
|
|
|
|
|
|
if output is None or len(output) == 0:
|
|
|
|
|
return None
|
|
|
|
|
elif content:
|
2010-04-12 13:35:20 +04:00
|
|
|
if conf.hostname not in kb.resumedQueries or ( conf.hostname in kb.resumedQueries and query not in kb.resumedQueries[conf.hostname] ):
|
|
|
|
|
dataToSessionFile("[%s][%s][%s][%s][%s]\n" % (conf.hostname, kb.injPlace, conf.parameters[kb.injPlace], query, base64pickle(output)))
|
|
|
|
|
|
2010-03-31 14:50:47 +04:00
|
|
|
if len(output) == 1:
|
|
|
|
|
if len(output[0]) == 1:
|
2010-05-29 15:46:41 +04:00
|
|
|
out = list(output)[0][0]
|
|
|
|
|
if isinstance(out, str):
|
|
|
|
|
out = utf8decode(out)
|
2010-06-25 17:24:43 +04:00
|
|
|
return getUnicode(out)
|
2010-03-31 14:50:47 +04:00
|
|
|
else:
|
|
|
|
|
return list(output)
|
|
|
|
|
else:
|
|
|
|
|
return output
|
|
|
|
|
else:
|
|
|
|
|
for line in output:
|
|
|
|
|
if line[0] in (1, -1):
|
|
|
|
|
return True
|
|
|
|
|
else:
|
|
|
|
|
return False
|
