Commit Graph

6448 Commits

Author SHA1 Message Date
Miroslav Stampar
291a0d772a Update for an Issue #615 2014-02-27 14:23:14 +01:00
Miroslav Stampar
2ffdee5733 Bug fix for PAYLOAD.WHERE.REPLACE payloads containing custom injection marker ([ORIGVALUE] was screwed) 2014-02-26 11:41:48 +01:00
Miroslav Stampar
cc62a8adc9 Bug fix for JSON-like data (proper escaping of quotes) 2014-02-26 09:30:37 +01:00
Miroslav Stampar
6369a38ebc Adding support for JSON-like data with single quote 2014-02-26 08:56:17 +01:00
Miroslav Stampar
465f968be6 Minor cosmetic update 2014-02-26 08:41:23 +01:00
Miroslav Stampar
edc8ef9d5b Patch for an Issue #611 (original page used in case of tamper functions was wrong - e.g. if --tamper=base64encode was used) 2014-02-25 13:48:34 +01:00
Miroslav Stampar
2a423d61ef Raising number of requests for false positive testing in case of higher levels 2014-02-23 19:40:01 +01:00
Miroslav Stampar
d405fc1157 Minor update (for the consistency sake) 2014-02-16 22:04:12 +01:00
Miroslav Stampar
58eac364a2 Bug fix 2014-02-16 21:57:14 +01:00
Miroslav Stampar
dfa727cbc5 Fix for a same bug mentioned in last commit 2014-02-16 21:47:14 +01:00
Miroslav Stampar
43df4efd11 Bug fix (bad idea is to do os.path.join on web URLs - especially on Windows OS) 2014-02-16 21:44:57 +01:00
Miroslav Stampar
d05bfdd7dd Implementing option '--where' (Issue #605) 2014-02-11 16:20:45 +01:00
Bernardo Damele
be6767b3b0 minor fix for command execution via web shell 2014-02-10 09:59:57 +00:00
Miroslav Stampar
fe0ff6e679 Changing 'is injectable' to 'seems to be injectable' for boolean and time-based blind injection cases - for false positive cases 2014-02-09 17:50:16 +01:00
Miroslav Stampar
8521265526 Minor fix 2014-02-07 14:40:43 +01:00
Miroslav Stampar
de8cb15350 Fix for an Issue #601 2014-02-05 15:11:39 +01:00
Miroslav Stampar
b83d531ab3 Minor fix (Reference: https://en.wikipedia.org/wiki/Internet_Information_Services) 2014-02-05 08:32:55 +01:00
Miroslav Stampar
f28b8dbda8 Minor update 2014-02-01 22:24:56 +01:00
Miroslav Stampar
534c2ee0e6 Minor update 2014-02-01 22:12:00 +01:00
Miroslav Stampar
0e44132778 Removing unused imports 2014-02-01 21:49:12 +01:00
Miroslav Stampar
f97fcb7bb3 Adding a switch --invalid-string 2014-01-23 21:56:06 +01:00
Miroslav Stampar
f88f6dcd7e Changing --invalid-bignum from float producing to int producing 2014-01-23 09:07:25 +01:00
Miroslav Stampar
fc02badf40 Minor update 2014-01-23 08:33:21 +01:00
Miroslav Stampar
ab36e5a2f0 Fix for an Issue #597 2014-01-15 10:29:58 +01:00
Bernardo Damele
bc29bf6481 removed comments 2014-01-13 23:57:49 +00:00
Bernardo Damele
1505f1dc74 removed useless sink 2014-01-13 23:55:32 +00:00
Bernardo Damele
124ebefc7f code cleanup 2014-01-13 23:48:15 +00:00
Bernardo Damele
4e8ab48145 fixed match 2014-01-13 23:48:00 +00:00
Bernardo Damele
b86353b485 minor fix to DB2 test case 2014-01-13 23:34:25 +00:00
Bernardo Damele
85f60d0c09 leftovers 2014-01-13 17:41:33 +00:00
Bernardo Damele
536b44a429 adapted 2014-01-13 17:38:04 +00:00
Bernardo Damele
3c79d66569 fixed stderr 2014-01-13 17:34:38 +00:00
Bernardo Damele
43a4e85749 updated copyright 2014-01-13 17:24:49 +00:00
Bernardo Damele
d546fc5ad5 slight update to regression test regexp 2014-01-13 17:24:09 +00:00
Bernardo Damele
9a1be29b45 updated test cases for regression test 2014-01-13 17:12:59 +00:00
Bernardo Damele
dfa9076a70 fixed and improved web shell upload in MySQL (it was actually broken since fc57b7565d) 2014-01-13 17:12:37 +00:00
Miroslav Stampar
6863436d4e Implementation for an Issue #596 2014-01-13 10:05:56 +01:00
Bernardo Damele
b4139f5b82 added takeover shared object for PgSQL 9.1 Linux 32-bit - issue #20 2014-01-10 18:16:25 +00:00
Bernardo Damele
4975aafa65 updated live tests 2014-01-10 17:38:04 +00:00
Bernardo Damele
148767941b new host 2014-01-10 17:23:27 +00:00
Bernardo Damele
d9e00adfae minor fix 2014-01-10 17:23:16 +00:00
Miroslav Stampar
36f3ab5798 Minor bug fix (for cases when race between thread and main thread is causing server._running to not be set to True) 2014-01-09 15:46:55 +01:00
Miroslav Stampar
cb1f17cb04 Proper patch for an Issue #591 2014-01-02 12:15:56 +01:00
Miroslav Stampar
5437f8bf36 Fix for an Issue #85 2014-01-02 12:09:58 +01:00
Miroslav Stampar
4de83daf03 Minor style update 2014-01-02 11:06:19 +01:00
Miroslav Stampar
e0143e397a Consistency fix (down below we use direct SQL) 2014-01-02 10:59:53 +01:00
Miroslav Stampar
0b4fcb6845 Fix for an Issue #591 2014-01-02 10:55:40 +01:00
Miroslav Stampar
854a55166c Fix for an Issue #588 2014-01-02 10:29:10 +01:00
Miroslav Stampar
9b4b070ecf Minor cosmetics 2014-01-02 10:05:58 +01:00
Miroslav Stampar
192a911b76 Patch for an Issue #28 2013-12-29 16:16:50 +01:00