mirror of
				https://github.com/sqlmapproject/sqlmap.git
				synced 2025-10-25 21:21:03 +03:00 
			
		
		
		
	fix for that SOAP reported bug
This commit is contained in:
		
							parent
							
								
									1418ae9767
								
							
						
					
					
						commit
						12d32f58f2
					
				|  | @ -553,27 +553,27 @@ class Connect: | |||
| 
 | ||||
|             logger.log(CUSTOM_LOGGING.PAYLOAD, safecharencode(payload)) | ||||
| 
 | ||||
|         if place == PLACE.COOKIE and conf.cookieUrlencode: | ||||
|             value = agent.removePayloadDelimiters(value) | ||||
|             value = urlEncodeCookieValues(value) | ||||
| 
 | ||||
|         elif place: | ||||
|             if place in (PLACE.GET, PLACE.POST, PLACE.URI, PLACE.CUSTOM_POST): | ||||
|                 # payloads in GET and/or POST need to be urlencoded | ||||
|                 # throughly without safe chars (especially & and =) | ||||
|                 # addendum: as we support url encoding in tampering | ||||
|                 # functions therefore we need to use % as a safe char | ||||
|                 if place != PLACE.URI or (value and payload and '?' in value and value.find('?') < value.find(payload)): | ||||
|                     payload = urlencode(payload, "%", False, True) | ||||
|                     payload = urlencode(payload, '%', False, True) | ||||
|                     value = agent.replacePayload(value, payload) | ||||
| 
 | ||||
|             elif place == PLACE.SOAP: | ||||
|                 # payloads in SOAP should have chars > and < replaced | ||||
|                 # with their HTML encoded counterparts | ||||
|                 payload = payload.replace('>', '>').replace('<', '<') | ||||
|                 payload = payload.replace('>', ">").replace('<', "<") | ||||
|                 value = agent.replacePayload(value, payload) | ||||
| 
 | ||||
|         if place: | ||||
|             value = agent.removePayloadDelimiters(value) | ||||
| 
 | ||||
|             if place == PLACE.COOKIE and conf.cookieUrlencode: | ||||
|                 value = urlEncodeCookieValues(value) | ||||
| 
 | ||||
|         if conf.checkPayload: | ||||
|             checkPayload(value) | ||||
| 
 | ||||
|  |  | |||
		Loading…
	
		Reference in New Issue
	
	Block a user