From f1000e0d15b4f145aeb487756f5d6866115a74ff Mon Sep 17 00:00:00 2001 From: Miroslav Stampar Date: Fri, 22 Nov 2019 16:25:46 +0100 Subject: [PATCH] Minor update --- data/txt/common-files.txt | 16 ++++++++++++++++ lib/core/settings.py | 2 +- 2 files changed, 17 insertions(+), 1 deletion(-) diff --git a/data/txt/common-files.txt b/data/txt/common-files.txt index c2514e4e4..8db048a6b 100644 --- a/data/txt/common-files.txt +++ b/data/txt/common-files.txt @@ -203,6 +203,15 @@ /var/www/nginx-default/index.php /srv/www/index.php +/var/www/config.php +/usr/local/apache/config.php +/usr/local/apache2/config.php +/usr/local/www/apache22/config.php +/usr/local/www/apache24/config.php +/usr/local/httpd/config.php +/var/www/nginx-default/config.php +/srv/www/config.php + # Reference: https://github.com/sqlmapproject/sqlmap/issues/3928 /srv/www/htdocs/index.php @@ -212,6 +221,13 @@ /var/www/htdocs/index.php /var/www/html/index.php +/srv/www/htdocs/config.php +/usr/local/apache2/htdocs/config.php +/usr/local/www/data/config.php +/var/apache2/htdocs/config.php +/var/www/htdocs/config.php +/var/www/html/config.php + # Reference: https://www.gracefulsecurity.com/path-traversal-cheat-sheet-linux /etc/passwd diff --git a/lib/core/settings.py b/lib/core/settings.py index 3dec6dbae..3f4794336 100644 --- a/lib/core/settings.py +++ b/lib/core/settings.py @@ -18,7 +18,7 @@ from lib.core.enums import OS from thirdparty.six import unichr as _unichr # sqlmap version (...) -VERSION = "1.3.11.97" +VERSION = "1.3.11.98" TYPE = "dev" if VERSION.count('.') > 2 and VERSION.split('.')[-1] != '0' else "stable" TYPE_COLORS = {"dev": 33, "stable": 90, "pip": 34} VERSION_STRING = "sqlmap/%s#%s" % ('.'.join(VERSION.split('.')[:-1]) if VERSION.count('.') > 2 and VERSION.split('.')[-1] == '0' else VERSION, TYPE)