mirror of
https://github.com/sqlmapproject/sqlmap.git
synced 2024-11-29 04:53:48 +03:00
Major bug fix to forge SQL injection payload on Oracle
This commit is contained in:
parent
bc448211c5
commit
fd7cb9101c
|
@ -334,7 +334,7 @@ class Agent:
|
|||
elif fieldsNoSelect:
|
||||
concatQuery = "'%s'||%s||'%s'" % (temp.start, concatQuery, temp.stop)
|
||||
|
||||
if kb.dbms == "Oracle" and ( fieldsSelect or fieldsNoSelect ):
|
||||
if kb.dbms == "Oracle" and " FROM " not in concatQuery and ( fieldsSelect or fieldsNoSelect ):
|
||||
concatQuery += " FROM DUAL"
|
||||
|
||||
elif kb.dbms == "Microsoft SQL Server":
|
||||
|
|
Loading…
Reference in New Issue
Block a user