From 9e19c28a359f0ca0f99459194275accef3cec669 Mon Sep 17 00:00:00 2001
From: Jenna Magius <jenna.the.mage@gmail.com>
Date: Sun, 15 Jan 2017 00:07:48 -0700
Subject: [PATCH] Improve FI heuristic logic

---
 lib/controller/checks.py | 9 ++++-----
 1 file changed, 4 insertions(+), 5 deletions(-)

diff --git a/lib/controller/checks.py b/lib/controller/checks.py
index ab020b93c..378e27218 100644
--- a/lib/controller/checks.py
+++ b/lib/controller/checks.py
@@ -1005,11 +1005,10 @@ def heuristicCheckSqlInjection(place, parameter):
         logger.info(infoMsg)
 
     for match in re.finditer(FI_ERROR_REGEX, page or ""):
-        if randStr1.lower() in match.group(0).lower():
-            infoMsg = "heuristic (FI) test shows that %s parameter " % paramType
-            infoMsg += "'%s' might be vulnerable to file inclusion attacks" % parameter
-            logger.info(infoMsg)
-            break
+        infoMsg = "heuristic (FI) test shows that %s parameter " % paramType
+        infoMsg += "'%s' might be vulnerable to file inclusion attacks" % parameter
+        logger.info(infoMsg)
+        break
 
     kb.heuristicMode = False