@@ -3582,7 +3582,7 @@ def decodeIntToUnicode(value):
35823582 # Note: https://github.com/sqlmapproject/sqlmap/issues/1531
35833583 retVal = getUnicode (raw , conf .encoding or UNICODE_ENCODING )
35843584 elif Backend .isDbms (DBMS .MSSQL ):
3585- retVal = getUnicode (raw , "UTF-16-BE" )
3585+ retVal = getUnicode (raw , "UTF-16-BE" ) # References: https://docs.microsoft.com/en-us/sql/relational-databases/collations/collation-and-unicode-support?view=sql-server-2017 and https://stackoverflow.com/a/14488478
35863586 elif Backend .getIdentifiedDbms () in (DBMS .PGSQL , DBMS .ORACLE ):
35873587 retVal = _unichr (value )
35883588 else :
@@ -3669,7 +3669,7 @@ def getLatestRevision():
36693669 """
36703670
36713671 retVal = None
3672- req = _urllib .request .Request (url = "https://raw.githubusercontent.com/sqlmapproject/sqlmap/master/lib/core/settings.py" )
3672+ req = _urllib .request .Request (url = "https://raw.githubusercontent.com/sqlmapproject/sqlmap/master/lib/core/settings.py" , headers = { HTTP_HEADER . USER_AGENT : fetchRandomAgent ()} )
36733673
36743674 try :
36753675 content = getUnicode (_urllib .request .urlopen (req ).read ())
@@ -3801,7 +3801,7 @@ def maskSensitiveData(msg):
38013801 retVal = retVal .replace (value , '*' * len (value ))
38023802
38033803 # Just in case (for problematic parameters regarding user encoding)
3804- for match in re .finditer (r"(?i)[ -]-(u|url|data|cookie|auth-\w+|proxy)( |=)(.*?)(?= -?-[a-z]|\Z)" , retVal ):
3804+ for match in re .finditer (r"(?i)[ -]-(u|url|data|cookie|auth-\w+|proxy|host|referer|headers?|H )( |=)(.*?)(?= -?-[a-z]|\Z)" , retVal ):
38053805 retVal = retVal .replace (match .group (3 ), '*' * len (match .group (3 )))
38063806
38073807 # Fail-safe substitutions
0 commit comments