sqlmapproject/sqlmap
1
1
Fork 0
mirror of https://github.com/sqlmapproject/sqlmap.git synced 2025-06-09 07:33:04 +03:00
Code Issues Packages Projects Releases Wiki Activity

More fix for --technique resume

Browse Source
This commit is contained in:
Bernardo Damele 2011-05-05 16:38:46 +00:00
parent e96a533a04
commit 2d8408c885
2 changed files with 27 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

16
lib/controller/checks.py
View File

@ -80,6 +80,7 @@ def checkSqlInjection(place, parameter, value):
if kb.endDetection: if kb.endDetection:
break break
proceed = True
title = test.title title = test.title
stype = test.stype stype = test.stype
clause = test.clause clause = test.clause
@ -202,6 +203,21 @@ def checkSqlInjection(place, parameter, value):
logger.debug(debugMsg) logger.debug(debugMsg)
continue continue
if len(kb.injections) > 0:
for resumedInj in kb.injections:
if resumedInj.place == place and resumedInj.parameter \
== parameter and stype in resumedInj.data:
debugMsg = "skipping test '%s' because this " % title
debugMsg += "technique has already been detected "
debugMsg += "in a previous run"
logger.debug(debugMsg)
proceed = False
break
if not proceed:
continue
infoMsg = "testing '%s'" % title infoMsg = "testing '%s'" % title
logger.info(infoMsg) logger.info(infoMsg)

13
lib/controller/controller.py
View File

@ -317,9 +317,18 @@ def start():
# TODO: consider the following line in __setRequestParams() # TODO: consider the following line in __setRequestParams()
# __testableParameters = True # __testableParameters = True
if (len(kb.injections) == 0 or (len(kb.injections) == 1 and kb.injections[0].place is None)) \ proceed = False
and (kb.injection.place is None or kb.injection.parameter is None):
if len(kb.injections) > 0:
for resumedInj in kb.injections:
for tech in conf.tech:
if tech not in resumedInj.data:
proceed = True
break
else:
proceed = True
if proceed:
if not conf.string and not conf.regexp: if not conf.string and not conf.regexp:
# NOTE: this is not needed anymore, leaving only to display # NOTE: this is not needed anymore, leaving only to display
# a warning message to the user in case the page is not stable # a warning message to the user in case the page is not stable