Consistency between cmdline.py, optiondict.py and sqlmap.conf and got rid of --union-use switch

lib/controller/action.py

@@ -64,7 +64,7 @@ def action():
     if conf.timeTest:
         conf.dumper.technic("time based blind sql injection payload", timeTest())
 
-    if ( conf.unionUse or conf.unionTest ) and not kb.unionPosition:
+    if conf.unionTest and not kb.unionPosition:
         conf.dumper.technic("valid union", unionTest())
 
     # Enumeration options

lib/parse/cmdline.py

@@ -207,14 +207,14 @@ def cmdLineParser():
                                  "the affected parameter(s) rather than using "
                                  "the default blind SQL injection technique.")
 
-        techniques.add_option("--stacked-test", dest="stackedTest",
-                              action="store_true", default=False,
-                              help="Test for stacked queries (multiple "
-                                   "statements) support")
-
         techniques.add_option("--error-test", dest="errorTest",
                           action="store_true", default=False,
-                          help="Test for error based SQL injection support (beta)")
+                          help="Test for and use error based SQL injection")
+
+        techniques.add_option("--stacked-test", dest="stackedTest",
+                              action="store_true", default=False,
+                              help="Test for and use stacked queries (multiple "
+                                   "statements)")
 
         techniques.add_option("--time-test", dest="timeTest",
                               action="store_true", default=False,
@@ -227,17 +227,11 @@ def cmdLineParser():
 
         techniques.add_option("--union-test", dest="unionTest",
                               action="store_true", default=False,
-                              help="Test for UNION query (inband) SQL injection")
+                              help="Test for and use UNION query (inband) SQL injection")
 
         techniques.add_option("--union-tech", dest="uTech",
                               help="Technique to test for UNION query SQL injection")
 
-        techniques.add_option("--union-use", dest="unionUse",
-                              action="store_true", default=False,
-                              help="Use the UNION query (inband) SQL injection "
-                                   "to retrieve the queries output. No "
-                                   "need to go blind")
-
         # Fingerprint options
         fingerprint = OptionGroup(parser, "Fingerprint")
 

plugins/generic/enumeration.py

@@ -73,7 +73,7 @@ class Enumeration:
         logger.info(infoMsg)
 
         if not kb.data.banner:
-            if conf.unionUse or conf.unionTest:
+            if conf.unionTest:
                 conf.dumper.technic("valid union", unionTest())
 
             query          = queries[kb.dbms].banner.query

sqlmap.conf

@@ -226,7 +226,11 @@ tamper =
 # using the default blind SQL injection technique.
 [Techniques]
 
-# Test for stacked queries (multiple statements) support.
+# Test for and use error based SQL injection.
+# Valid: True or False
+errorTest = False
+
+# Test for and use stacked queries (multiple statements).
 # Valid: True or False
 stackedTest = False
 
@@ -239,7 +243,7 @@ timeTest = False
 # Default: 5
 timeSec = 5
 
-# Test for UNION query (inband) SQL injection.
+# Test for and use UNION query (inband) SQL injection.
 # Valid: True or False
 unionTest = False
 
@@ -250,11 +254,6 @@ unionTest = False
 # Default: NULL
 uTech = NULL
 
-# Use the UNION query (inband) SQL injection to retrieve the queries
-# output. No need to go blind.
-# Valid: True or False
-unionUse = False
-
 
 [Fingerprint]