Thanks to visit codestin.com
Credit goes to github.com

Skip to content

Commit 061c8da

Browse files
committed
Proper overlongutf8.py (Issue #806)
1 parent a16663f commit 061c8da

3 files changed

Lines changed: 6 additions & 5 deletions

File tree

lib/core/settings.py

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -19,7 +19,7 @@
1919
from lib.core.enums import OS
2020

2121
# sqlmap version (<major>.<minor>.<month>.<monthly commit>)
22-
VERSION = "1.2.2.3"
22+
VERSION = "1.2.2.4"
2323
TYPE = "dev" if VERSION.count('.') > 2 and VERSION.split('.')[-1] != '0' else "stable"
2424
TYPE_COLORS = {"dev": 33, "stable": 90, "pip": 34}
2525
VERSION_STRING = "sqlmap/%s#%s" % ('.'.join(VERSION.split('.')[:-1]) if VERSION.count('.') > 2 and VERSION.split('.')[-1] == '0' else VERSION, TYPE)

tamper/overlongutf8.py

Lines changed: 3 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -20,9 +20,10 @@ def tamper(payload, **kwargs):
2020
encoded)
2121
2222
Reference: https://www.acunetix.com/vulnerabilities/unicode-transformation-issues/
23+
Reference: https://www.thecodingforums.com/threads/newbie-question-about-character-encoding-what-does-0xc0-0x8a-have-in-common-with-0xe0-0x80-0x8a.170201/
2324
2425
>>> tamper('SELECT FIELD FROM TABLE WHERE 2>1')
25-
'SELECT%C0%AAFIELD%C0%AAFROM%C0%AATABLE%C0%AAWHERE%C0%AA2%C0%BE1'
26+
'SELECT%C0%A0FIELD%C0%A0FROM%C0%A0TABLE%C0%A0WHERE%C0%A02%C0%BE1'
2627
"""
2728

2829
retVal = payload
@@ -37,7 +38,7 @@ def tamper(payload, **kwargs):
3738
i += 3
3839
else:
3940
if payload[i] not in (string.ascii_letters + string.digits):
40-
retVal += "%%C0%%%.2X" % (0x8A | ord(payload[i]))
41+
retVal += "%%%.2X%%%.2X" % (0xc0 + (ord(payload[i]) >> 6), 0x80 + (ord(payload[i]) & 0x3f))
4142
else:
4243
retVal += payload[i]
4344
i += 1

txt/checksum.md5

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -46,7 +46,7 @@ ffa5f01f39b17c8d73423acca6cfe86a lib/core/readlineng.py
4646
0c3eef46bdbf87e29a3f95f90240d192 lib/core/replication.py
4747
a7db43859b61569b601b97f187dd31c5 lib/core/revision.py
4848
fcb74fcc9577523524659ec49e2e964b lib/core/session.py
49-
a2aed50a1a6605d67d688b524bda5f56 lib/core/settings.py
49+
20d4b1198a1583059a993ea7864c79c4 lib/core/settings.py
5050
d0adc28a38e43a787df4471f7f027413 lib/core/shell.py
5151
63491be462c515a1a3880c27c2acc4a2 lib/core/subprocessng.py
5252
505aaa61e1bba3c3d4567c3e667699e3 lib/core/target.py
@@ -254,7 +254,7 @@ e44163d21e055805b5e55667e72f5978 tamper/modsecurityversioned.py
254254
f83a11d594fad3ed3291074c7b37b281 tamper/modsecurityzeroversioned.py
255255
abd6490408551a8c8226a32fbc2b5345 tamper/multiplespaces.py
256256
be757e4c9a6fb36af7b9a8c444fddb05 tamper/nonrecursivereplacement.py
257-
aca15cb5474fb0a32e517ae5e940cbd0 tamper/overlongutf8.py
257+
7de367954d124c29847c23909d82d92e tamper/overlongutf8.py
258258
bc0363e4fc04240c9f7b81e4ecce0714 tamper/percentage.py
259259
4fa8b6c0e7573e395330bb6a405abbaf tamper/plus2concat.py
260260
5b947c6cd78eab22ee53f5f534c532d3 tamper/plus2fnconcat.py

0 commit comments

Comments
 (0)