Thanks to visit codestin.com Credit goes to github.com
We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
There was an error while loading. Please reload this page.
1 parent b472d98 commit 2fb5996Copy full SHA for 2fb5996
1 file changed
plugins/generic/search.py
@@ -189,7 +189,7 @@ def searchTable(self):
189
logger.info(infoMsg)
190
191
tblQuery = "%s%s" % (tblCond, tblCondParam)
192
- tblQuery = tblQuery % tbl
+ tblQuery = tblQuery % unsafeSQLIdentificatorNaming(tbl)
193
194
if any(isTechniqueAvailable(_) for _ in (PAYLOAD.TECHNIQUE.UNION, PAYLOAD.TECHNIQUE.ERROR, PAYLOAD.TECHNIQUE.QUERY)) or conf.direct:
195
query = rootQuery.inband.query
@@ -505,7 +505,7 @@ def searchColumn(self):
505
506
for column, dbData in foundCols.items():
507
colQuery = "%s%s" % (colCond, colCondParam)
508
- colQuery = colQuery % column
+ colQuery = colQuery % unsafeSQLIdentificatorNaming(column)
509
510
for db in dbData:
511
db = safeSQLIdentificatorNaming(db)
0 commit comments