Adding a small warning message (related to the Issue #407)

2024-11-22 17:46:37 +03:00 · 2013-02-22 11:12:41 +01:00 · 2013-02-22 11:12:41 +01:00 · 0bbbfc2eac
commit 0bbbfc2eac
parent 42cbd94fa4
1 changed files with 7 additions and 0 deletions
--- a/lib/controller/checks.py
+++ b/lib/controller/checks.py
@ -671,6 +671,13 @@ def checkFalsePositives(injection):
            warnMsg = "false positive or unexploitable injection point detected"
            logger.warn(warnMsg)

+            if PAYLOAD.TECHNIQUE.BOOLEAN in injection.data:
+                if all(_.__name__ != "between" for _ in kb.tamperFunctions):
+                    warnMsg = "there is a possibility that the character '>' is "
+                    warnMsg += "filtered by the back-end server. You can try "
+                    warnMsg += "to rerun with '--tamper=between'"
+                    logger.warn(warnMsg)
+
        kb.injection = popValue()

    return retVal