From 03fac6259203a3b1d13c04475f267686bff3461d Mon Sep 17 00:00:00 2001 From: Bernardo Damele Date: Thu, 17 Mar 2011 12:34:29 +0000 Subject: [PATCH] Minor code restyle --- lib/techniques/inband/union/test.py | 5 +++-- 1 file changed, 3 insertions(+), 2 deletions(-) diff --git a/lib/techniques/inband/union/test.py b/lib/techniques/inband/union/test.py index ff2bd00d9..26ef222e1 100644 --- a/lib/techniques/inband/union/test.py +++ b/lib/techniques/inband/union/test.py @@ -57,6 +57,7 @@ def __findUnionCharCount(comment, place, parameter, value, prefix, suffix, where upperCount = lowerCount + MIN_UNION_RESPONSES min_, max_ = MAX_RATIO, MIN_RATIO + for count in range(lowerCount, upperCount+1): query = agent.forgeInbandQuery('', -1, count, comment, prefix, suffix, conf.uChar) payload = agent.payload(place=place, parameter=parameter, newValue=query, where=where) @@ -75,8 +76,8 @@ def __findUnionCharCount(comment, place, parameter, value, prefix, suffix, where return None lower, upper = average(ratios) - UNION_STDEV_COEFF * deviation, average(ratios) + UNION_STDEV_COEFF * deviation - minItem, maxItem = None, None + for item in items: if item[1] == min_: minItem = item @@ -163,7 +164,7 @@ def __unionConfirm(comment, place, parameter, value, prefix, suffix, count): # Assure that the above function found the exploitable full inband # SQL injection position if not validPayload: - validPayload, vector = __unionPosition(comment, place, parameter, value, prefix, suffix, count, where=2) + validPayload, vector = __unionPosition(comment, place, parameter, value, prefix, suffix, count, where=PAYLOAD.WHERE.NEGATIVE) return validPayload, vector