major fix for heuristic check

2025-02-02 20:54:13 +03:00 · 2010-10-27 08:27:31 +00:00 · 2010-10-27 08:27:31 +00:00 · 5cc1bd8a12
commit 5cc1bd8a12
parent 749e25a217
1 changed files with 1 additions and 4 deletions
--- a/lib/controller/checks.py
+++ b/lib/controller/checks.py
@ -104,10 +104,7 @@ def heuristicCheckSqlInjection(place, parameter, value):
            postfix = conf.postfix

    payload = "%s%s%s" % (prefix, randomStr(length=10, alphabet=['"', '\'', ')', '(']), postfix)
-
-    if place == "URI":
-        payload = conf.paramDict[place][parameter].replace('*', payload)
-
+    payload = agent.payload(place, parameter, value, payload)
    Request.queryPage(payload, place)
    result = wasLastRequestError()