mirror of
				https://github.com/sqlmapproject/sqlmap.git
				synced 2025-10-25 13:11:00 +03:00 
			
		
		
		
	Fixed annoying bug that prevented proper checkBooleanExpression() function to work with direct connection (-d). Now DBMS fingerprint should work properly with -d
This commit is contained in:
		
							parent
							
								
									23cc8b6974
								
							
						
					
					
						commit
						1c44d6d3c7
					
				|  | @ -404,8 +404,19 @@ def getValue(expression, blind=True, inband=True, error=True, time=True, fromUse | ||||||
|         getCurrentThreadData().disableStdOut = suppressOutput |         getCurrentThreadData().disableStdOut = suppressOutput | ||||||
| 
 | 
 | ||||||
|     try: |     try: | ||||||
|  |         if expected == EXPECTED.BOOL: | ||||||
|  |             forgeCaseExpression = booleanExpression = expression | ||||||
|  | 
 | ||||||
|  |             if expression.upper().startswith("SELECT "): | ||||||
|  |                 booleanExpression = expression[len("SELECT "):] | ||||||
|  |             else: | ||||||
|  |                 forgeCaseExpression = agent.forgeCaseStatement(expression) | ||||||
|  | 
 | ||||||
|         if conf.direct: |         if conf.direct: | ||||||
|             value = direct(expression) |             if expected == EXPECTED.BOOL: | ||||||
|  |                 value = direct(forgeCaseExpression) | ||||||
|  |             else: | ||||||
|  |                 value = direct(expression) | ||||||
| 
 | 
 | ||||||
|         elif any(map(isTechniqueAvailable, getPublicTypeMembers(PAYLOAD.TECHNIQUE, onlyValues=True))): |         elif any(map(isTechniqueAvailable, getPublicTypeMembers(PAYLOAD.TECHNIQUE, onlyValues=True))): | ||||||
|             query = cleanQuery(expression) |             query = cleanQuery(expression) | ||||||
|  | @ -418,14 +429,6 @@ def getValue(expression, blind=True, inband=True, error=True, time=True, fromUse | ||||||
| 
 | 
 | ||||||
|             count = 0 |             count = 0 | ||||||
| 
 | 
 | ||||||
|             if expected == EXPECTED.BOOL: |  | ||||||
|                 forgeCaseExpression = booleanExpression = expression |  | ||||||
| 
 |  | ||||||
|                 if expression.upper().startswith("SELECT "): |  | ||||||
|                     booleanExpression = expression[len("SELECT "):] |  | ||||||
|                 else: |  | ||||||
|                     forgeCaseExpression = agent.forgeCaseStatement(expression) |  | ||||||
| 
 |  | ||||||
|             if inband and isTechniqueAvailable(PAYLOAD.TECHNIQUE.UNION): |             if inband and isTechniqueAvailable(PAYLOAD.TECHNIQUE.UNION): | ||||||
|                 kb.technique = PAYLOAD.TECHNIQUE.UNION |                 kb.technique = PAYLOAD.TECHNIQUE.UNION | ||||||
| 
 | 
 | ||||||
|  |  | ||||||
		Loading…
	
		Reference in New Issue
	
	Block a user