sqlmapproject/sqlmap
1
1
Fork 0
mirror of https://github.com/sqlmapproject/sqlmap.git synced 2025-11-04 09:57:38 +03:00
Code Issues Packages Projects Releases Wiki Activity

Adding switch '--unsafe-naming'

Browse Source
This commit is contained in:
Miroslav Stampar 2024-02-10 15:24:28 +01:00
parent 9c1879b08d
commit 76a2e658b5
5 changed files with 11 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
lib/core/common.py
View File

@ -4273,6 +4273,9 @@ def safeSQLIdentificatorNaming(name, isTable=False):
retVal = name retVal = name
if conf.unsafeNaming:
return retVal
if isinstance(name, six.string_types): if isinstance(name, six.string_types):
retVal = getUnicode(name) retVal = getUnicode(name)
_ = isTable and Backend.getIdentifiedDbms() in (DBMS.MSSQL, DBMS.SYBASE) _ = isTable and Backend.getIdentifiedDbms() in (DBMS.MSSQL, DBMS.SYBASE)

1
lib/core/optiondict.py
View File

@ -240,6 +240,7 @@ optDict = {
"testFilter": "string", "testFilter": "string",
"testSkip": "string", "testSkip": "string",
"timeLimit": "float", "timeLimit": "float",
"unsafeNaming": "boolean",
"webRoot": "string", "webRoot": "string",
}, },

2
lib/core/settings.py
View File

@ -20,7 +20,7 @@ from thirdparty import six
from thirdparty.six import unichr as _unichr from thirdparty.six import unichr as _unichr
# sqlmap version (<major>.<minor>.<month>.<monthly commit>) # sqlmap version (<major>.<minor>.<month>.<monthly commit>)
VERSION = "1.8.2.0" VERSION = "1.8.2.1"
TYPE = "dev" if VERSION.count('.') > 2 and VERSION.split('.')[-1] != '0' else "stable" TYPE = "dev" if VERSION.count('.') > 2 and VERSION.split('.')[-1] != '0' else "stable"
TYPE_COLORS = {"dev": 33, "stable": 90, "pip": 34} TYPE_COLORS = {"dev": 33, "stable": 90, "pip": 34}
VERSION_STRING = "sqlmap/%s#%s" % ('.'.join(VERSION.split('.')[:-1]) if VERSION.count('.') > 2 and VERSION.split('.')[-1] == '0' else VERSION, TYPE) VERSION_STRING = "sqlmap/%s#%s" % ('.'.join(VERSION.split('.')[:-1]) if VERSION.count('.') > 2 and VERSION.split('.')[-1] == '0' else VERSION, TYPE)

3
lib/parse/cmdline.py
View File

@ -739,6 +739,9 @@ def cmdLineParser(argv=None):
general.add_argument("--time-limit", dest="timeLimit", type=float, general.add_argument("--time-limit", dest="timeLimit", type=float,
help="Run with a time limit in seconds (e.g. 3600)") help="Run with a time limit in seconds (e.g. 3600)")
general.add_argument("--unsafe-naming", dest="unsafeNaming", action="store_true",
help="Disable escaping of DBMS identifiers (e.g. \"user\")")
general.add_argument("--web-root", dest="webRoot", general.add_argument("--web-root", dest="webRoot",
help="Web server document root directory (e.g. \"/var/www\")") help="Web server document root directory (e.g. \"/var/www\")")

3
sqlmap.conf
View File

@ -829,6 +829,9 @@ testSkip =
# Run with a time limit in seconds (e.g. 3600). # Run with a time limit in seconds (e.g. 3600).
timeLimit = timeLimit =
# Disable escaping of DBMS identifiers (e.g. "user").
unsafeNaming = False
# Web server document root directory (e.g. "/var/www"). # Web server document root directory (e.g. "/var/www").
webRoot = webRoot =