mirror of
https://github.com/sqlmapproject/sqlmap.git
synced 2025-01-24 00:04:23 +03:00
Closes #1163
This commit is contained in:
parent
b1d13d1e7d
commit
2e5c11e427
|
@ -196,25 +196,6 @@ def checkSqlInjection(place, parameter, value):
|
||||||
logger.debug(debugMsg)
|
logger.debug(debugMsg)
|
||||||
continue
|
continue
|
||||||
|
|
||||||
elif not (kb.extendTests and intersect(dbms, kb.extendTests)):
|
|
||||||
# Skip test if the risk is higher than the provided (or default)
|
|
||||||
# value
|
|
||||||
# Parse test's <risk>
|
|
||||||
if test.risk > conf.risk:
|
|
||||||
debugMsg = "skipping test '%s' because the risk (%d) " % (title, test.risk)
|
|
||||||
debugMsg += "is higher than the provided (%d)" % conf.risk
|
|
||||||
logger.debug(debugMsg)
|
|
||||||
continue
|
|
||||||
|
|
||||||
# Skip test if the level is higher than the provided (or default)
|
|
||||||
# value
|
|
||||||
# Parse test's <level>
|
|
||||||
if test.level > conf.level:
|
|
||||||
debugMsg = "skipping test '%s' because the level (%d) " % (title, test.level)
|
|
||||||
debugMsg += "is higher than the provided (%d)" % conf.level
|
|
||||||
logger.debug(debugMsg)
|
|
||||||
continue
|
|
||||||
|
|
||||||
if dbms is not None:
|
if dbms is not None:
|
||||||
if injection.dbms is not None and not intersect(injection.dbms, dbms):
|
if injection.dbms is not None and not intersect(injection.dbms, dbms):
|
||||||
debugMsg = "skipping test '%s' because " % title
|
debugMsg = "skipping test '%s' because " % title
|
||||||
|
@ -237,6 +218,25 @@ def checkSqlInjection(place, parameter, value):
|
||||||
logger.debug(debugMsg)
|
logger.debug(debugMsg)
|
||||||
continue
|
continue
|
||||||
|
|
||||||
|
if not (kb.extendTests and intersect(dbms, kb.extendTests)):
|
||||||
|
# Skip test if the risk is higher than the provided (or default)
|
||||||
|
# value
|
||||||
|
# Parse test's <risk>
|
||||||
|
if test.risk > conf.risk:
|
||||||
|
debugMsg = "skipping test '%s' because the risk (%d) " % (title, test.risk)
|
||||||
|
debugMsg += "is higher than the provided (%d)" % conf.risk
|
||||||
|
logger.debug(debugMsg)
|
||||||
|
continue
|
||||||
|
|
||||||
|
# Skip test if the level is higher than the provided (or default)
|
||||||
|
# value
|
||||||
|
# Parse test's <level>
|
||||||
|
if test.level > conf.level:
|
||||||
|
debugMsg = "skipping test '%s' because the level (%d) " % (title, test.level)
|
||||||
|
debugMsg += "is higher than the provided (%d)" % conf.level
|
||||||
|
logger.debug(debugMsg)
|
||||||
|
continue
|
||||||
|
|
||||||
# Skip test if it does not match the same SQL injection clause
|
# Skip test if it does not match the same SQL injection clause
|
||||||
# already identified by another test
|
# already identified by another test
|
||||||
clauseMatch = False
|
clauseMatch = False
|
||||||
|
|
Loading…
Reference in New Issue
Block a user