found and fixed few bugs regarding my "fix" of Bug #110

2024-11-22 09:36:35 +03:00 · 2010-01-03 15:56:29 +00:00 · 2010-01-03 15:56:29 +00:00 · 96a033b51d
commit 96a033b51d
parent d5b1863dec
1 changed files with 2 additions and 2 deletions
--- a/lib/request/basic.py
+++ b/lib/request/basic.py
@ -68,13 +68,13 @@ def parseResponse(page, headers):
        # Detect injectable page absolute system path
        # NOTE: this regular expression works if the remote web application
        # is written in PHP and debug/error messages are enabled.
-        absFilePathsRegExp = ( r" in <b>(.*?)</b> on line",  r"\b[A-Za-z]:(\\[\w.\\]*)?", r"/[/\w.]+" )
+        absFilePathsRegExp = ( r" in <b>(?P<result>.*?)</b> on line",  r"\b(?P<result>[A-Za-z]:(\\[\w.\\]*)?)", r"(\A|[^<])(?P<result>/[/\w.]+)" )

        for absFilePathRegExp in absFilePathsRegExp:
            reobj = re.compile(absFilePathRegExp)

            for match in reobj.finditer(page):
-                absFilePath = match.group()
+                absFilePath = match.group("result")

                if absFilePath not in kb.absFilePaths:
                    kb.absFilePaths.add(os.path.dirname(absFilePath))