sqlmapproject/sqlmap
1
1
Fork 0
mirror of https://github.com/sqlmapproject/sqlmap.git synced 2024-11-22 01:26:42 +03:00
Code Issues Packages Projects Releases Wiki Activity

Fixes #3762

Browse Source
This commit is contained in:
Miroslav Stampar 2019-06-17 14:59:48 +02:00
parent 8220b6264c
commit 797bc7b75f
2 changed files with 4 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
lib/core/settings.py
View File

@ -18,7 +18,7 @@ from lib.core.enums import OS
from thirdparty.six import unichr as _unichr from thirdparty.six import unichr as _unichr
# sqlmap version (<major>.<minor>.<month>.<monthly commit>) # sqlmap version (<major>.<minor>.<month>.<monthly commit>)
VERSION = "1.3.6.44" VERSION = "1.3.6.45"
TYPE = "dev" if VERSION.count('.') > 2 and VERSION.split('.')[-1] != '0' else "stable" TYPE = "dev" if VERSION.count('.') > 2 and VERSION.split('.')[-1] != '0' else "stable"
TYPE_COLORS = {"dev": 33, "stable": 90, "pip": 34} TYPE_COLORS = {"dev": 33, "stable": 90, "pip": 34}
VERSION_STRING = "sqlmap/%s#%s" % ('.'.join(VERSION.split('.')[:-1]) if VERSION.count('.') > 2 and VERSION.split('.')[-1] == '0' else VERSION, TYPE) VERSION_STRING = "sqlmap/%s#%s" % ('.'.join(VERSION.split('.')[:-1]) if VERSION.count('.') > 2 and VERSION.split('.')[-1] == '0' else VERSION, TYPE)

4
tamper/randomcase.py
View File

@ -41,6 +41,8 @@ def tamper(payload, **kwargs):
'f()' 'f()'
>>> tamper('function()') >>> tamper('function()')
'FuNcTiOn()' 'FuNcTiOn()'
>>> tamper('SELECT id FROM `user`')
'SeLeCt id FrOm `user`'
""" """
retVal = payload retVal = payload
@ -49,7 +51,7 @@ def tamper(payload, **kwargs):
for match in re.finditer(r"\b[A-Za-z_]{2,}\b", retVal): for match in re.finditer(r"\b[A-Za-z_]{2,}\b", retVal):
word = match.group() word = match.group()
if word.upper() in kb.keywords or ("%s(" % word) in payload: if (word.upper() in kb.keywords and re.search(r"(?i)[`\"\[]%s[`\"\]]" % word, retVal) is None) or ("%s(" % word) in payload:
while True: while True:
_ = "" _ = ""