Minor update for the Issue #2

2024-11-22 17:46:37 +03:00 · 2014-10-23 14:03:44 +02:00 · 2014-10-23 14:03:44 +02:00 · 01f4b76817
commit 01f4b76817
parent 7143e61619
2 changed files with 4 additions and 4 deletions
--- a/lib/core/settings.py
+++ b/lib/core/settings.py
@ -603,8 +603,8 @@ METASPLOIT_SESSION_TIMEOUT = 300
 # Reference: http://www.cookiecentral.com/faq/#3.5
 NETSCAPE_FORMAT_HEADER_COOKIES = "# Netscape HTTP Cookie File."

-# Prefixes used for automatic recognition of parameters carrying CSRF protection tokens
-CSRF_TOKEN_PARAMETER_PREFIXES = ("csrf", "xsrf")
+# Infixes used for automatic recognition of parameters carrying CSRF protection tokens
+CSRF_TOKEN_PARAMETER_INFIXES = ("csrf", "xsrf")

 # Prefixes used in brute force search for web server document root
 BRUTE_DOC_ROOT_PREFIXES = {
--- a/lib/core/target.py
+++ b/lib/core/target.py
@ -43,7 +43,7 @@ from lib.core.option import _setDBMS
 from lib.core.option import _setKnowledgeBaseAttributes
 from lib.core.option import _setAuthCred
 from lib.core.settings import ASTERISK_MARKER
-from lib.core.settings import CSRF_TOKEN_PARAMETER_PREFIXES
+from lib.core.settings import CSRF_TOKEN_PARAMETER_INFIXES
 from lib.core.settings import CUSTOM_INJECTION_MARK_CHAR
 from lib.core.settings import DEFAULT_GET_POST_DELIMITER
 from lib.core.settings import HOST_ALIASES
@ -353,7 +353,7 @@ def _setRequestParams():
    else:
        for place in (PLACE.GET, PLACE.POST):
            for parameter in conf.paramDict.get(place, {}):
-                if any(parameter.lower().startswith(_) for _ in CSRF_TOKEN_PARAMETER_PREFIXES):
+                if any(parameter.lower().count(_) for _ in CSRF_TOKEN_PARAMETER_INFIXES):
                    message = "%s parameter '%s' appears to hold CSRF protection token. " % (place, parameter)
                    message += "Do you want sqlmap to automatically update it in further requests? [y/N] "
                    test = readInput(message, default="N")