Patch for an Issue #564

stamparm · stamparm · commit 6c80f2903b82 · 2013-12-27T11:02:59.000+01:00
diff --git a/lib/controller/checks.py b/lib/controller/checks.py
@@ -322,7 +322,7 @@ def checkSqlInjection(place, parameter, value):
 
                     # Threat the parameter original value according to the
                     # test's <where> tag
-                    if where == PAYLOAD.WHERE.ORIGINAL:
+                    if where == PAYLOAD.WHERE.ORIGINAL or conf.prefix:
                         origValue = value
                     elif where == PAYLOAD.WHERE.NEGATIVE:
                         # Use different page template than the original
diff --git a/lib/core/agent.py b/lib/core/agent.py
@@ -108,6 +108,9 @@ def payload(self, place=None, parameter=None, value=None, newValue=None, where=N
             origValue = origValue.split(CUSTOM_INJECTION_MARK_CHAR)[0]
             origValue = origValue[origValue.index(',') + 1:]
 
+        if conf.prefix:
+            value = origValue
+
         if value is None:
             if where == PAYLOAD.WHERE.ORIGINAL:
                 value = origValue
