mirror of
https://github.com/sqlmapproject/sqlmap.git
synced 2025-01-24 00:04:23 +03:00
Update for an Issue #431
This commit is contained in:
parent
cf2d5fd453
commit
1fc4d0e3c4
|
@ -1252,16 +1252,6 @@ def _setHTTPAuthentication():
|
||||||
checkFile(key_file)
|
checkFile(key_file)
|
||||||
authHandler = HTTPSPKIAuthHandler(key_file)
|
authHandler = HTTPSPKIAuthHandler(key_file)
|
||||||
|
|
||||||
def _setHTTPMethod():
|
|
||||||
"""
|
|
||||||
Check and set the HTTP method to perform HTTP requests through.
|
|
||||||
"""
|
|
||||||
|
|
||||||
conf.method = HTTPMETHOD.POST if conf.data is not None else HTTPMETHOD.GET
|
|
||||||
|
|
||||||
debugMsg = "setting the HTTP method to %s" % conf.method
|
|
||||||
logger.debug(debugMsg)
|
|
||||||
|
|
||||||
def _setHTTPExtraHeaders():
|
def _setHTTPExtraHeaders():
|
||||||
if conf.headers:
|
if conf.headers:
|
||||||
debugMsg = "setting extra HTTP headers"
|
debugMsg = "setting extra HTTP headers"
|
||||||
|
@ -2330,7 +2320,6 @@ def init():
|
||||||
_setHTTPCookies()
|
_setHTTPCookies()
|
||||||
_setHTTPReferer()
|
_setHTTPReferer()
|
||||||
_setHTTPUserAgent()
|
_setHTTPUserAgent()
|
||||||
_setHTTPMethod()
|
|
||||||
_setHTTPAuthentication()
|
_setHTTPAuthentication()
|
||||||
_setHTTPProxy()
|
_setHTTPProxy()
|
||||||
_setDNSCache()
|
_setDNSCache()
|
||||||
|
|
|
@ -765,7 +765,7 @@ class Connect(object):
|
||||||
retVal = re.sub("%s=[^&]*" % re.escape(parameter), "%s=%s" % (parameter, newValue), paramString)
|
retVal = re.sub("%s=[^&]*" % re.escape(parameter), "%s=%s" % (parameter, newValue), paramString)
|
||||||
return retVal
|
return retVal
|
||||||
|
|
||||||
page, headers, code = Connect.getPage(url=conf.csrfUrl or conf.url, cookie=conf.parameters.get(PLACE.COOKIE), direct=True, silent=True, ua=conf.parameters.get(PLACE.USER_AGENT), referer=conf.parameters.get(PLACE.REFERER), host=conf.parameters.get(PLACE.HOST))
|
page, headers, code = Connect.getPage(url=conf.csrfUrl or conf.url, data=conf.data if conf.csrfUrl == conf.url else None, method=conf.method if conf.csrfUrl == conf.url else None, cookie=conf.parameters.get(PLACE.COOKIE), direct=True, silent=True, ua=conf.parameters.get(PLACE.USER_AGENT), referer=conf.parameters.get(PLACE.REFERER), host=conf.parameters.get(PLACE.HOST))
|
||||||
match = re.search(r"<input[^>]+name=[\"']?%s[\"']?\s[^>]*value=(\"([^\"]+)|'([^']+)|([^ >]+))" % re.escape(conf.csrfToken), page or "")
|
match = re.search(r"<input[^>]+name=[\"']?%s[\"']?\s[^>]*value=(\"([^\"]+)|'([^']+)|([^ >]+))" % re.escape(conf.csrfToken), page or "")
|
||||||
token = (match.group(2) or match.group(3) or match.group(4)) if match else None
|
token = (match.group(2) or match.group(3) or match.group(4)) if match else None
|
||||||
|
|
||||||
|
@ -943,7 +943,7 @@ class Connect(object):
|
||||||
elif kb.nullConnection == NULLCONNECTION.RANGE:
|
elif kb.nullConnection == NULLCONNECTION.RANGE:
|
||||||
auxHeaders[HTTP_HEADER.RANGE] = "bytes=-1"
|
auxHeaders[HTTP_HEADER.RANGE] = "bytes=-1"
|
||||||
|
|
||||||
_, headers, code = Connect.getPage(url=uri, get=get, post=post, cookie=cookie, ua=ua, referer=referer, host=host, silent=silent, method=method, auxHeaders=auxHeaders, raise404=raise404, skipRead=(kb.nullConnection == NULLCONNECTION.SKIP_READ))
|
_, headers, code = Connect.getPage(url=uri, get=get, post=post, method=method, cookie=cookie, ua=ua, referer=referer, host=host, silent=silent, auxHeaders=auxHeaders, raise404=raise404, skipRead=(kb.nullConnection == NULLCONNECTION.SKIP_READ))
|
||||||
|
|
||||||
if headers:
|
if headers:
|
||||||
if kb.nullConnection in (NULLCONNECTION.HEAD, NULLCONNECTION.SKIP_READ) and HTTP_HEADER.CONTENT_LENGTH in headers:
|
if kb.nullConnection in (NULLCONNECTION.HEAD, NULLCONNECTION.SKIP_READ) and HTTP_HEADER.CONTENT_LENGTH in headers:
|
||||||
|
@ -955,7 +955,7 @@ class Connect(object):
|
||||||
|
|
||||||
if not pageLength:
|
if not pageLength:
|
||||||
try:
|
try:
|
||||||
page, headers, code = Connect.getPage(url=uri, get=get, post=post, cookie=cookie, ua=ua, referer=referer, host=host, silent=silent, method=method, auxHeaders=auxHeaders, response=response, raise404=raise404, ignoreTimeout=timeBasedCompare)
|
page, headers, code = Connect.getPage(url=uri, get=get, post=post, method=method, cookie=cookie, ua=ua, referer=referer, host=host, silent=silent, auxHeaders=auxHeaders, response=response, raise404=raise404, ignoreTimeout=timeBasedCompare)
|
||||||
except MemoryError:
|
except MemoryError:
|
||||||
page, headers, code = None, None, None
|
page, headers, code = None, None, None
|
||||||
warnMsg = "site returned insanely large response"
|
warnMsg = "site returned insanely large response"
|
||||||
|
|
Loading…
Reference in New Issue
Block a user