mirror of
https://github.com/sqlmapproject/sqlmap.git
synced 2024-11-28 20:43:49 +03:00
Minor fixes
This commit is contained in:
parent
0e7f771be6
commit
97c06854a4
|
@ -579,9 +579,9 @@ class Dump(object):
|
||||||
|
|
||||||
for column in dbColumnsDict.keys():
|
for column in dbColumnsDict.keys():
|
||||||
if colConsider == "1":
|
if colConsider == "1":
|
||||||
colConsiderStr = "s like '" + column + "' were"
|
colConsiderStr = "s like '%s' were" % unsafeSQLIdentificatorNaming(column)
|
||||||
else:
|
else:
|
||||||
colConsiderStr = " '%s' was" % column
|
colConsiderStr = " '%s' was" % unsafeSQLIdentificatorNaming(column)
|
||||||
|
|
||||||
msg = "Column%s found in the " % colConsiderStr
|
msg = "Column%s found in the " % colConsiderStr
|
||||||
msg += "following databases:"
|
msg += "following databases:"
|
||||||
|
|
|
@ -247,7 +247,7 @@ class Databases:
|
||||||
return tableExists(paths.COMMON_TABLES)
|
return tableExists(paths.COMMON_TABLES)
|
||||||
|
|
||||||
infoMsg = "fetching tables for database"
|
infoMsg = "fetching tables for database"
|
||||||
infoMsg += "%s: '%s'" % ("s" if len(dbs) > 1 else "", ", ".join(db if isinstance(db, basestring) else db[0] for db in sorted(dbs)))
|
infoMsg += "%s: '%s'" % ("s" if len(dbs) > 1 else "", ", ".join(unsafeSQLIdentificatorNaming(unArrayizeValue(db)) for db in sorted(dbs)))
|
||||||
logger.info(infoMsg)
|
logger.info(infoMsg)
|
||||||
|
|
||||||
rootQuery = queries[Backend.getIdentifiedDbms()].tables
|
rootQuery = queries[Backend.getIdentifiedDbms()].tables
|
||||||
|
@ -261,7 +261,7 @@ class Databases:
|
||||||
query += " WHERE %s" % condition
|
query += " WHERE %s" % condition
|
||||||
|
|
||||||
if conf.excludeSysDbs:
|
if conf.excludeSysDbs:
|
||||||
infoMsg = "skipping system database%s '%s'" % ("s" if len(self.excludeDbsList) > 1 else "", ", ".join(db for db in self.excludeDbsList))
|
infoMsg = "skipping system database%s '%s'" % ("s" if len(self.excludeDbsList) > 1 else "", ", ".join(unsafeSQLIdentificatorNaming(db) for db in self.excludeDbsList))
|
||||||
logger.info(infoMsg)
|
logger.info(infoMsg)
|
||||||
query += " IN (%s)" % ",".join("'%s'" % unsafeSQLIdentificatorNaming(db) for db in sorted(dbs) if db not in self.excludeDbsList)
|
query += " IN (%s)" % ",".join("'%s'" % unsafeSQLIdentificatorNaming(db) for db in sorted(dbs) if db not in self.excludeDbsList)
|
||||||
else:
|
else:
|
||||||
|
@ -290,7 +290,7 @@ class Databases:
|
||||||
if not kb.data.cachedTables and isInferenceAvailable() and not conf.direct:
|
if not kb.data.cachedTables and isInferenceAvailable() and not conf.direct:
|
||||||
for db in dbs:
|
for db in dbs:
|
||||||
if conf.excludeSysDbs and db in self.excludeDbsList:
|
if conf.excludeSysDbs and db in self.excludeDbsList:
|
||||||
infoMsg = "skipping system database '%s'" % db
|
infoMsg = "skipping system database '%s'" % unsafeSQLIdentificatorNaming(db)
|
||||||
logger.info(infoMsg)
|
logger.info(infoMsg)
|
||||||
|
|
||||||
continue
|
continue
|
||||||
|
@ -569,7 +569,7 @@ class Databases:
|
||||||
and conf.db in kb.data.cachedColumns and tbl in \
|
and conf.db in kb.data.cachedColumns and tbl in \
|
||||||
kb.data.cachedColumns[conf.db]:
|
kb.data.cachedColumns[conf.db]:
|
||||||
infoMsg = "fetched tables' columns on "
|
infoMsg = "fetched tables' columns on "
|
||||||
infoMsg += "database '%s'" % conf.db
|
infoMsg += "database '%s'" % unsafeSQLIdentificatorNaming(conf.db)
|
||||||
logger.info(infoMsg)
|
logger.info(infoMsg)
|
||||||
|
|
||||||
return {conf.db: kb.data.cachedColumns[conf.db]}
|
return {conf.db: kb.data.cachedColumns[conf.db]}
|
||||||
|
@ -692,7 +692,7 @@ class Databases:
|
||||||
|
|
||||||
if not kb.data.cachedColumns:
|
if not kb.data.cachedColumns:
|
||||||
warnMsg = "unable to retrieve column names for "
|
warnMsg = "unable to retrieve column names for "
|
||||||
warnMsg += ("table '%s' " % tblList[0]) if len(tblList) == 1 else "any table "
|
warnMsg += ("table '%s' " % unsafeSQLIdentificatorNaming(unArrayizeValue(tblList))) if len(tblList) == 1 else "any table "
|
||||||
warnMsg += "in database '%s'" % unsafeSQLIdentificatorNaming(conf.db)
|
warnMsg += "in database '%s'" % unsafeSQLIdentificatorNaming(conf.db)
|
||||||
logger.warn(warnMsg)
|
logger.warn(warnMsg)
|
||||||
|
|
||||||
|
|
|
@ -363,7 +363,7 @@ class Entries:
|
||||||
|
|
||||||
self.dumpTable()
|
self.dumpTable()
|
||||||
except SqlmapNoneDataException:
|
except SqlmapNoneDataException:
|
||||||
infoMsg = "skipping table '%s'" % table
|
infoMsg = "skipping table '%s'" % unsafeSQLIdentificatorNaming(table)
|
||||||
logger.info(infoMsg)
|
logger.info(infoMsg)
|
||||||
|
|
||||||
def dumpFoundColumn(self, dbs, foundCols, colConsider):
|
def dumpFoundColumn(self, dbs, foundCols, colConsider):
|
||||||
|
@ -378,7 +378,7 @@ class Entries:
|
||||||
|
|
||||||
for db, tblData in dbs.items():
|
for db, tblData in dbs.items():
|
||||||
if tblData:
|
if tblData:
|
||||||
message += "[%s]\n" % db
|
message += "[%s]\n" % unsafeSQLIdentificatorNaming(db)
|
||||||
|
|
||||||
message += "[q]uit"
|
message += "[q]uit"
|
||||||
test = readInput(message, default="a")
|
test = readInput(message, default="a")
|
||||||
|
@ -441,7 +441,7 @@ class Entries:
|
||||||
|
|
||||||
for db, tablesList in tables.items():
|
for db, tablesList in tables.items():
|
||||||
if tablesList:
|
if tablesList:
|
||||||
message += "[%s]\n" % db
|
message += "[%s]\n" % unsafeSQLIdentificatorNaming(db)
|
||||||
|
|
||||||
message += "[q]uit"
|
message += "[q]uit"
|
||||||
test = readInput(message, default="a")
|
test = readInput(message, default="a")
|
||||||
|
@ -459,11 +459,11 @@ class Entries:
|
||||||
|
|
||||||
conf.db = db
|
conf.db = db
|
||||||
dumpFromTbls = []
|
dumpFromTbls = []
|
||||||
message = "which table(s) of database '%s'?\n" % db
|
message = "which table(s) of database '%s'?\n" % unsafeSQLIdentificatorNaming(db)
|
||||||
message += "[a]ll (default)\n"
|
message += "[a]ll (default)\n"
|
||||||
|
|
||||||
for tbl in tablesList:
|
for tbl in tablesList:
|
||||||
message += "[%s]\n" % tbl
|
message += "[%s]\n" % unsafeSQLIdentificatorNaming(tbl)
|
||||||
|
|
||||||
message += "[s]kip\n"
|
message += "[s]kip\n"
|
||||||
message += "[q]uit"
|
message += "[q]uit"
|
||||||
|
|
|
@ -519,7 +519,7 @@ class Search:
|
||||||
logger.info(infoMsg)
|
logger.info(infoMsg)
|
||||||
|
|
||||||
query = rootQuery.blind.count2
|
query = rootQuery.blind.count2
|
||||||
query = query % db
|
query = query % unsafeSQLIdentificatorNaming(db)
|
||||||
query += " AND %s" % colQuery
|
query += " AND %s" % colQuery
|
||||||
query += whereTblsQuery
|
query += whereTblsQuery
|
||||||
|
|
||||||
|
|
Loading…
Reference in New Issue
Block a user