mirror of
https://github.com/sqlmapproject/sqlmap.git
synced 2024-11-26 11:33:47 +03:00
use it only if page is stable
This commit is contained in:
parent
414c74b8aa
commit
bbbcc95fe5
|
@ -346,7 +346,7 @@ def checkSqlInjection(place, parameter, value):
|
|||
|
||||
injectable = True
|
||||
|
||||
if not injectable and not conf.string:
|
||||
if not injectable and not conf.string and kb.pageStable:
|
||||
trueSet = set(extractTextTagContent(truePage))
|
||||
falseSet = set(extractTextTagContent(falsePage))
|
||||
candidate = reduce(lambda x, y: x or (y.strip() if y.strip() in (kb.pageTemplate or "") and y.strip() not in falsePage else None), (trueSet - falseSet), None)
|
||||
|
|
Loading…
Reference in New Issue
Block a user