First commit for Issue #120

stamparm · stamparm · commit ad5a73199927 · 2018-09-05T00:16:35.000+02:00
diff --git a/lib/core/agent.py b/lib/core/agent.py
@@ -301,7 +301,8 @@ def cleanupPayload(self, payload, origValue=None):
             ("[SPACE_REPLACE]", kb.chars.space),
             ("[DOLLAR_REPLACE]", kb.chars.dollar),
             ("[HASH_REPLACE]", kb.chars.hash_),
-            ("[GENERIC_SQL_COMMENT]", GENERIC_SQL_COMMENT)
+            ("[GENERIC_SQL_COMMENT]", GENERIC_SQL_COMMENT),
+            ("[ORIGINAL]", origValue or "")
         )
         payload = reduce(lambda x, y: x.replace(y[0], y[1]), replacements, payload)
 
diff --git a/xml/boundaries.xml b/xml/boundaries.xml
@@ -488,6 +488,17 @@ Formats:
     </boundary>
     <!-- End of pre-WHERE derived table boundaries -->
 
+    <!-- Escaped column name (e.g. SELECT `...` FROM table) boundaries -->
+    <boundary>
+        <level>4</level>
+        <clause>1</clause>
+        <where>1</where>
+        <ptype>1</ptype>
+        <prefix>`</prefix>
+        <suffix> AND `[ORIGINAL]</suffix>
+    </boundary>
+    <!-- End of escaped column name boundaries -->
+
     <!-- AGAINST boolean full-text search boundaries (http://dev.mysql.com/doc/refman/5.5/en/fulltext-boolean.html) -->
     <boundary>
         <level>4</level>
diff --git a/xml/errors.xml b/xml/errors.xml
@@ -9,6 +9,7 @@
         <error regexp="MySQLSyntaxErrorException"/>
         <error regexp="valid MySQL result"/>
         <error regexp="check the manual that corresponds to your (MySQL|MariaDB) server version"/>
+        <error regexp="Unknown column '[^ ]+' in 'field list'"/>
         <error regexp="MySqlClient\."/>
         <error regexp="com\.mysql\.jdbc\.exceptions"/>
         <error regexp="Zend_Db_Statement_Mysqli_Exception"/>

Original file line number	Diff line number	Diff line change
`@@ -301,7 +301,8 @@ def cleanupPayload(self, payload, origValue=None):`
`301`	`301`	`("[SPACE_REPLACE]", kb.chars.space),`
`302`	`302`	`("[DOLLAR_REPLACE]", kb.chars.dollar),`
`303`	`303`	`("[HASH_REPLACE]", kb.chars.hash_),`
`304`		`- ("[GENERIC_SQL_COMMENT]", GENERIC_SQL_COMMENT)`
	`304`	`+ ("[GENERIC_SQL_COMMENT]", GENERIC_SQL_COMMENT),`
	`305`	`+ ("[ORIGINAL]", origValue or "")`
`305`	`306`	`)`
`306`	`307`	`payload = reduce(lambda x, y: x.replace(y[0], y[1]), replacements, payload)`
`307`	`308`