From 73917fc9c86f5aa2d2f631d6d6a78a4c2cd27594 Mon Sep 17 00:00:00 2001
From: Miroslav Stampar <miroslav.stampar@gmail.com>
Date: Thu, 11 Apr 2013 21:25:44 +0200
Subject: [PATCH] Minor update (same, but safer)

---
 lib/techniques/union/use.py | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/lib/techniques/union/use.py b/lib/techniques/union/use.py
index dab4f4660..bc2cf59bf 100644
--- a/lib/techniques/union/use.py
+++ b/lib/techniques/union/use.py
@@ -61,12 +61,11 @@ def _oneShotUnionUse(expression, unpack=True, limited=False):
         # Prepare expression with delimiters
         injExpression = unescaper.escape(agent.concatQuery(expression, unpack))
 
-        where = PAYLOAD.WHERE.NEGATIVE if conf.limitStart or conf.limitStop else None
-
         # Forge the union SQL injection request
         vector = kb.injection.data[PAYLOAD.TECHNIQUE.UNION].vector
         kb.unionDuplicates = vector[7]
         query = agent.forgeUnionQuery(injExpression, vector[0], vector[1], vector[2], vector[3], vector[4], vector[5], vector[6], None, limited)
+        where = PAYLOAD.WHERE.NEGATIVE if conf.limitStart or conf.limitStop else vector[6]
         payload = agent.payload(newValue=query, where=where)
 
         # Perform the request