From 970cde5a8aa1d8b9eadc6a1d42bad58334c526d6 Mon Sep 17 00:00:00 2001
From: Miroslav Stampar <miroslav.stampar@gmail.com>
Date: Thu, 17 Mar 2011 09:23:46 +0000
Subject: [PATCH] minor update regarding last commit

---
 lib/controller/checks.py | 10 ++++++++--
 1 file changed, 8 insertions(+), 2 deletions(-)

diff --git a/lib/controller/checks.py b/lib/controller/checks.py
index 5342be1d3..4ceb66505 100644
--- a/lib/controller/checks.py
+++ b/lib/controller/checks.py
@@ -67,6 +67,9 @@ def checkSqlInjection(place, parameter, value):
     # successfully inject
     injection = injectionDict()
 
+    # Localized thread data needed for some methods
+    threadData = getCurrentThreadData()
+
     # Set the flag for sql injection test mode
     kb.testMode = True
 
@@ -334,8 +337,11 @@ def checkSqlInjection(place, parameter, value):
                             # body for the test's <grep> regular expression
                             page, headers = Request.queryPage(reqPayload, place, content=True, raise404=False)
                             output = extractRegexResult(check, page, re.DOTALL | re.IGNORECASE) \
-                                     or extractRegexResult(check, listToStrValue(headers.headers \
-                                     if headers else None), re.DOTALL | re.IGNORECASE)
+                                    or extractRegexResult(check, listToStrValue(headers.headers \
+                                    if headers else None), re.DOTALL | re.IGNORECASE) \
+                                    or extractRegexResult(check, threadData.lastRedirectMsg[1] \
+                                    if threadData.lastRedirectMsg and threadData.lastRedirectMsg[0] == \
+                                    threadData.lastRequestUID else None, re.DOTALL | re.IGNORECASE)
 
                             if output:
                                 result = output.replace(kb.misc.space, " ") == "1"