more info to the user

This commit is contained in:
Miroslav Stampar 2011-06-03 15:43:50 +00:00
parent 8c80413c52
commit 0a620bf322

View File

@ -501,6 +501,12 @@ def checkSqlInjection(place, parameter, value):
# Return the injection object
if injection.place is not None and injection.parameter is not None:
if not conf.dropSetCookie and PAYLOAD.TECHNIQUE.BOOLEAN in injection.data and injection.data[PAYLOAD.TECHNIQUE.BOOLEAN].vector.startswith('OR'):
warnMsg = "in cases like this (OR boolean) please consider usage "
warnMsg += "of switch --drop-set-cookie if you experience any "
warnMsg += "problems during data retrieval"
logger.warn(warnMsg)
injection = checkFalsePositives(injection)
return injection
else: