From 9bc61739c1252e6378be812d038a4a8438064394 Mon Sep 17 00:00:00 2001
From: "Lucien A." <lu.aubert84@gmail.com>
Date: Sun, 31 Aug 2025 03:20:33 +0200
Subject: [PATCH] Fix mysql fingerprint confirmation

---
 plugins/dbms/mysql/fingerprint.py | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/plugins/dbms/mysql/fingerprint.py b/plugins/dbms/mysql/fingerprint.py
index e85b2037f..41bb2064d 100644
--- a/plugins/dbms/mysql/fingerprint.py
+++ b/plugins/dbms/mysql/fingerprint.py
@@ -192,7 +192,8 @@ class Fingerprint(GenericFingerprint):
             infoMsg = "confirming %s" % DBMS.MYSQL
             logger.info(infoMsg)
 
-            result = inject.checkBooleanExpression("SESSION_USER() LIKE USER()")
+            # user@% LIKE user@host OR user@host LIKE user@%
+            result = inject.checkBooleanExpression("SESSION_USER() LIKE USER() OR USER() LIKE SESSION_USER()")
 
             if not result:
                 # Note: MemSQL doesn't support SESSION_USER()