From d336f1df23606615081a9840858bcd9c9d56fdbf Mon Sep 17 00:00:00 2001
From: Miroslav Stampar <miroslav.stampar@gmail.com>
Date: Mon, 6 Dec 2010 18:44:42 +0000
Subject: [PATCH] minor update

---
 lib/controller/checks.py | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/lib/controller/checks.py b/lib/controller/checks.py
index c57cba7ab..d7e2b74e3 100644
--- a/lib/controller/checks.py
+++ b/lib/controller/checks.py
@@ -272,6 +272,7 @@ def checkSqlInjection(place, parameter, value):
                     kb.pageTemplate, _ = Request.queryPage(agent.payload(place, parameter, value, origValue), place, content=True)
                 elif where == 3:
                     origValue = ""
+                    kb.pageTemplate = kb.originalPage
 
                 # Forge request payload by prepending with boundary's
                 # prefix and appending the boundary's suffix to the
@@ -330,9 +331,9 @@ def checkSqlInjection(place, parameter, value):
                         output = extractRegexResult(check, reqBody, re.DOTALL | re.IGNORECASE)
 
                         if output:
-                            output = output.replace(ERROR_SPACE, " ").replace(ERROR_EMPTY_CHAR, "")
+                            result = output.replace(ERROR_SPACE, " ").replace(ERROR_EMPTY_CHAR, "") == "1"
 
-                            if output == "1":
+                            if result:
                                 infoMsg = "%s parameter '%s' is '%s' injectable " % (place, parameter, title)
                                 logger.info(infoMsg)