sqlmapproject/sqlmap
1
1
Fork 0
mirror of https://github.com/sqlmapproject/sqlmap.git synced 2025-03-03 11:45:46 +03:00
Code Issues Packages Projects Releases Wiki Activity

added conf.unescape global variable to control whether or not the injected statements should be unescaped

Browse Source
This commit is contained in:
Bernardo Damele 2012-07-10 01:37:16 +01:00
parent f645ac6040
commit a27f50ed1d
2 changed files with 4 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
lib/core/common.py
View File

@ -1548,8 +1548,10 @@ def getSQLSnippet(dbms, sfile, **variables):
Returns content of SQL snippet located inside 'procs/' directory
"""
if os.path.exists(sfile):
if sfile.endswith('.sql') and os.path.exists(sfile):
filename = sfile
elif not sfile.endswith('.sql') and os.path.exists("%s.sql" % sfile):
filename = "%s.sql" % sfile
else:
filename = os.path.join(paths.SQLMAP_PROCS_PATH, DBMS_DIRECTORY_DICT[dbms], sfile if sfile.endswith('.sql') else "%s.sql" % sfile)
checkFile(filename)

1
lib/core/option.py
View File

@ -1402,6 +1402,7 @@ def __setConfAttributes():
conf.tests = []
conf.trafficFP = None
conf.wFileType = None
conf.unescape = True
def __setKnowledgeBaseAttributes(flushAll=True):
"""