sqlmap/tamper/apostrophenullencode.py

#!/usr/bin/env python

"""
Copyright (c) 2006-2025 sqlmap developers (https://sqlmap.org/)
See the file 'LICENSE' for copying permission
"""

from lib.core.enums import PRIORITY

__priority__ = PRIORITY.LOWEST

def dependencies():
    pass

def tamper(payload, **kwargs):
    """
    Replaces single quotes (') with an illegal double Unicode encoding (e.g. ' -> %00%27)

    >>> tamper("1 AND '1'='1")
    '1 AND %00%271%00%27=%00%271'
    """

    return payload.replace('\'', "%00%27") if payload else payload
Last preparations for DREI 2019-05-08 13:47:52 +03:00			`#!/usr/bin/env python`
Added another tamper script 2012-03-09 16:09:19 +04:00
			`"""`
Year bump 2025-01-02 02:51:30 +03:00			`Copyright (c) 2006-2025 sqlmap developers (https://sqlmap.org/)`
Replacing doc/COPYING to LICENSE 2017-10-11 15:50:46 +03:00			`See the file 'LICENSE' for copying permission`
Added another tamper script 2012-03-09 16:09:19 +04:00			`"""`

			`from lib.core.enums import PRIORITY`

			`__priority__ = PRIORITY.LOWEST`

			`def dependencies():`
			`pass`

Update for an Issue #12 2012-12-03 17:27:01 +04:00			`def tamper(payload, **kwargs):`
Added another tamper script 2012-03-09 16:09:19 +04:00			`"""`
Minor update 2025-02-19 16:11:03 +03:00			`Replaces single quotes (') with an illegal double Unicode encoding (e.g. ' -> %00%27)`
Added another tamper script 2012-03-09 16:09:19 +04:00
Another update for an Issue #352 and couple of fixes 2013-03-14 00:57:09 +04:00			`>>> tamper("1 AND '1'='1")`
			`'1 AND %00%271%00%27=%00%271'`
Added another tamper script 2012-03-09 16:09:19 +04:00			`"""`

Tamper function(s) refactoring (really no need for returning headers as they are passed by reference) 2012-10-25 12:10:23 +04:00			`return payload.replace('\'', "%00%27") if payload else payload`