mirror of
https://github.com/sqlmapproject/sqlmap.git
synced 2024-11-29 04:53:48 +03:00
minor fix for parameters containing '=' inside values itself (remark: no parameter name will have '=' nor '%3d' inside; tested and it does a good job)
This commit is contained in:
parent
7881ded60d
commit
963f54e6d2
|
@ -554,7 +554,7 @@ def paramToDict(place, parameters=None):
|
|||
for element in splitParams:
|
||||
elem = element.split("=")
|
||||
|
||||
if len(elem) == 2:
|
||||
if len(elem) >= 2:
|
||||
parameter = elem[0].replace(" ", "")
|
||||
|
||||
condition = not conf.testParameter
|
||||
|
@ -569,7 +569,7 @@ def paramToDict(place, parameters=None):
|
|||
errMsg += "please, always use only valid parameter values "
|
||||
errMsg += "so sqlmap could be able to do a valid run."
|
||||
raise sqlmapSyntaxException, errMsg
|
||||
testableParameters[parameter] = elem[1]
|
||||
testableParameters[parameter] = "=".join(elem[1:])
|
||||
else:
|
||||
root = ET.XML(parameters)
|
||||
iterator = root.getiterator()
|
||||
|
|
Loading…
Reference in New Issue
Block a user