Patch for an Issue #1860

2024-11-22 17:46:37 +03:00 · 2016-05-12 16:42:12 +02:00 · 2016-05-12 16:42:12 +02:00 · 1e07269fe3
commit 1e07269fe3
parent 3b74e99576
2 changed files with 16 additions and 12 deletions
--- a/lib/controller/controller.py
+++ b/lib/controller/controller.py
@ -521,11 +521,14 @@ def start():

                                injection = checkSqlInjection(place, parameter, value)
                                proceed = not kb.endDetection
+                                injectable = False

                                if getattr(injection, "place", None) is not None:
                                    if NOTE.FALSE_POSITIVE_OR_UNEXPLOITABLE in injection.notes:
                                        kb.falsePositives.append(injection)
                                    else:
+                                        injectable = True
+
                                        kb.injections.append(injection)

                                        # In case when user wants to end detection phase (Ctrl+C)
@ -540,7 +543,8 @@ def start():
                                            proceed = False
                                            paramKey = (conf.hostname, conf.path, None, None)
                                            kb.testedParams.add(paramKey)
-                                else:
+
+                                if not injectable:
                                    warnMsg = "%s parameter '%s' is not " % (paramType, parameter)
                                    warnMsg += "injectable"
                                    logger.warn(warnMsg)
--- a/lib/core/settings.py
+++ b/lib/core/settings.py
@ -19,7 +19,7 @@ from lib.core.enums import OS
 from lib.core.revision import getRevisionNumber

 # sqlmap version (<major>.<minor>.<month>.<monthly commit>)
-VERSION = "1.0.5.20"
+VERSION = "1.0.5.21"
 REVISION = getRevisionNumber()
 STABLE = VERSION.count('.') <= 2
 VERSION_STRING = "sqlmap/%s#%s" % (VERSION, "stable" if STABLE else "dev")