Avoid blank space between prefix and test's payload if it's a stacked queries test

2025-01-23 15:54:24 +03:00 · 2010-12-03 10:42:46 +00:00 · 2010-12-03 10:42:46 +00:00 · 7d6f51f758
commit 7d6f51f758
parent b0928e02c6
1 changed files with 2 additions and 3 deletions
--- a/lib/controller/checks.py
+++ b/lib/controller/checks.py
@ -54,7 +54,6 @@ from plugins.dbms.sybase.syntax import Syntax as Sybase
 from plugins.dbms.sqlite.syntax import Syntax as SQLite
 from plugins.dbms.maxdb.syntax import Syntax as MaxDB

-
 def unescape(string, dbms):
    unescaper = {
                  "Access": Access.unescape,
@ -244,7 +243,7 @@ def checkSqlInjection(place, parameter, value):
                # Forge request payload by prepending with boundary's
                # prefix and appending the boundary's suffix to the
                # test's ' <payload><comment> ' string
-                boundPayload = "%s%s %s %s" % (origValue, prefix, fstPayload, suffix)
+                boundPayload = "%s%s%s%s %s" % (origValue, prefix, (" " if stype != 4 else ""), fstPayload, suffix)
                boundPayload = boundPayload.strip()
                boundPayload = agent.cleanupPayload(boundPayload, value)
                reqPayload = agent.payload(place, parameter, value, boundPayload)
@ -265,7 +264,7 @@ def checkSqlInjection(place, parameter, value):
                        # boundary's prefix and appending the boundary's
                        # suffix to the test's ' <payload><comment> '
                        # string
-                        boundPayload = "%s%s %s %s" % (origValue, prefix, sndPayload, suffix)
+                        boundPayload = "%s%s%s%s %s" % (origValue, prefix, (" " if stype != 4 else ""), sndPayload, suffix)
                        boundPayload = boundPayload.strip()
                        boundPayload = agent.cleanupPayload(boundPayload, value)
                        cmpPayload = agent.payload(place, parameter, value, boundPayload)