From 0882fe0ce3fc7ad2dcfcd13e68208716b40b54b3 Mon Sep 17 00:00:00 2001 From: stamparm Date: Tue, 26 Mar 2013 16:04:56 +0100 Subject: [PATCH] Minor update related to the last two --- lib/core/target.py | 9 ++++----- 1 file changed, 4 insertions(+), 5 deletions(-) diff --git a/lib/core/target.py b/lib/core/target.py index 8aa837d07..d41218efb 100644 --- a/lib/core/target.py +++ b/lib/core/target.py @@ -136,10 +136,6 @@ def _setRequestParams(): conf.data = re.sub(r"(?si)(Content-Disposition.+?)((\r)?\n--)", r"\g<1>%s\g<2>" % CUSTOM_INJECTION_MARK_CHAR, conf.data) kb.postHint = POST_HINT.MULTIPART - if kb.postHint: - if CUSTOM_INJECTION_MARK_CHAR not in conf.data: # in case that no usable parameter values has been found - kb.postHint = None - if not kb.postHint: if CUSTOM_INJECTION_MARK_CHAR in conf.data: # later processed pass @@ -152,8 +148,11 @@ def _setRequestParams(): if paramDict: conf.paramDict[place] = paramDict testableParameters = True + else: + if CUSTOM_INJECTION_MARK_CHAR not in conf.data: # in case that no usable parameter values has been found + conf.parameters[PLACE.POST] = conf.data - kb.processUserMarks = True if kb.postHint else kb.processUserMarks + kb.processUserMarks = True if (kb.postHint and CUSTOM_INJECTION_MARK_CHAR in conf.data) else kb.processUserMarks if re.search(URI_INJECTABLE_REGEX, conf.url, re.I) and not any(place in conf.parameters for place in (PLACE.GET, PLACE.POST)) and not kb.postHint: warnMsg = "you've provided target url without any GET "