Thanks to visit codestin.com Credit goes to github.com
We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
There was an error while loading. Please reload this page.
1 parent a52c881 commit 780dbd1Copy full SHA for 780dbd1
1 file changed
lib/core/target.py
@@ -349,6 +349,16 @@ def process(match, repl):
349
errMsg = "CSRF protection token parameter '%s' not " % conf.csrfToken
350
errMsg += "found in provided GET and/or POST values"
351
raise SqlmapGenericException(errMsg)
352
+ else:
353
+ for place in (PLACE.GET, PLACE.POST):
354
+ for parameter in conf.paramDict.get(place, {}):
355
+ if parameter.lower().startswith("csrf"):
356
+ message = "%s parameter '%s' appears to hold CSRF protection token. " % (place, parameter)
357
+ message += "Do you want sqlmap to automatically update it in further requests? [y/N] "
358
+ test = readInput(message, default="N")
359
+ if test and test[0] in ("y", "Y"):
360
+ conf.csrfToken = parameter
361
+ break
362
363
def _setHashDB():
364
"""
0 commit comments