mirror of
https://github.com/sqlmapproject/sqlmap.git
synced 2024-11-22 01:26:42 +03:00
Another update for #5295
This commit is contained in:
parent
a7b59243e2
commit
6336389322
|
@ -1696,11 +1696,20 @@ def _cleanupOptions():
|
|||
try:
|
||||
conf.ignoreCode = [int(_) for _ in re.split(PARAMETER_SPLITTING_REGEX, conf.ignoreCode)]
|
||||
except ValueError:
|
||||
errMsg = "options '--ignore-code' should contain a list of integer values or a wildcard value '%s'" % IGNORE_CODE_WILDCARD
|
||||
errMsg = "option '--ignore-code' should contain a list of integer values or a wildcard value '%s'" % IGNORE_CODE_WILDCARD
|
||||
raise SqlmapSyntaxException(errMsg)
|
||||
else:
|
||||
conf.ignoreCode = []
|
||||
|
||||
if conf.abortCode:
|
||||
try:
|
||||
conf.abortCode = [int(_) for _ in re.split(PARAMETER_SPLITTING_REGEX, conf.abortCode)]
|
||||
except ValueError:
|
||||
errMsg = "option '--abort-code' should contain a list of integer values"
|
||||
raise SqlmapSyntaxException(errMsg)
|
||||
else:
|
||||
conf.abortCode = []
|
||||
|
||||
if conf.paramFilter:
|
||||
conf.paramFilter = [_.strip() for _ in re.split(PARAMETER_SPLITTING_REGEX, conf.paramFilter.upper())]
|
||||
else:
|
||||
|
|
|
@ -39,6 +39,7 @@ optDict = {
|
|||
"authType": "string",
|
||||
"authCred": "string",
|
||||
"authFile": "string",
|
||||
"abortCode": "string",
|
||||
"ignoreCode": "string",
|
||||
"ignoreProxy": "boolean",
|
||||
"ignoreRedirects": "boolean",
|
||||
|
|
|
@ -20,7 +20,7 @@ from thirdparty import six
|
|||
from thirdparty.six import unichr as _unichr
|
||||
|
||||
# sqlmap version (<major>.<minor>.<month>.<monthly commit>)
|
||||
VERSION = "1.7.1.9"
|
||||
VERSION = "1.7.1.10"
|
||||
TYPE = "dev" if VERSION.count('.') > 2 and VERSION.split('.')[-1] != '0' else "stable"
|
||||
TYPE_COLORS = {"dev": 33, "stable": 90, "pip": 34}
|
||||
VERSION_STRING = "sqlmap/%s#%s" % ('.'.join(VERSION.split('.')[:-1]) if VERSION.count('.') > 2 and VERSION.split('.')[-1] == '0' else VERSION, TYPE)
|
||||
|
|
|
@ -201,8 +201,11 @@ def cmdLineParser(argv=None):
|
|||
request.add_argument("--auth-file", dest="authFile",
|
||||
help="HTTP authentication PEM cert/private key file")
|
||||
|
||||
request.add_argument("--abort-code", dest="abortCode",
|
||||
help="Abort on (problematic) HTTP error code(s) (e.g. 401)")
|
||||
|
||||
request.add_argument("--ignore-code", dest="ignoreCode",
|
||||
help="Ignore (problematic) HTTP error code (e.g. 401)")
|
||||
help="Ignore (problematic) HTTP error code(s) (e.g. 401)")
|
||||
|
||||
request.add_argument("--ignore-proxy", dest="ignoreProxy", action="store_true",
|
||||
help="Ignore system default proxy settings")
|
||||
|
|
|
@ -767,6 +767,11 @@ class Connect(object):
|
|||
if not multipart:
|
||||
logger.log(CUSTOM_LOGGING.TRAFFIC_IN, responseMsg)
|
||||
|
||||
if code in conf.abortCode:
|
||||
errMsg = "aborting due to detected HTTP code '%d'" % code
|
||||
singleTimeLogMessage(errMsg, logging.CRITICAL)
|
||||
raise SystemExit
|
||||
|
||||
if ex.code not in (conf.ignoreCode or []):
|
||||
if ex.code == _http_client.UNAUTHORIZED:
|
||||
errMsg = "not authorized, try to provide right HTTP "
|
||||
|
@ -921,6 +926,11 @@ class Connect(object):
|
|||
errMsg += "function '%s' ('%s')" % (function.__name__, getSafeExString(ex))
|
||||
raise SqlmapGenericException(errMsg)
|
||||
|
||||
if code in conf.abortCode:
|
||||
errMsg = "aborting due to detected HTTP code '%d'" % code
|
||||
singleTimeLogMessage(errMsg, logging.CRITICAL)
|
||||
raise SystemExit
|
||||
|
||||
threadData.lastPage = page
|
||||
threadData.lastCode = code
|
||||
|
||||
|
|
|
@ -101,8 +101,12 @@ authCred =
|
|||
# Syntax: key_file
|
||||
authFile =
|
||||
|
||||
# Abort on (problematic) HTTP error code (e.g. 401).
|
||||
# Valid: string
|
||||
abortCode =
|
||||
|
||||
# Ignore (problematic) HTTP error code (e.g. 401).
|
||||
# Valid: integer
|
||||
# Valid: string
|
||||
ignoreCode =
|
||||
|
||||
# Ignore system default proxy settings.
|
||||
|
|
Loading…
Reference in New Issue
Block a user