sqlmapproject
diff --git a/‎lib/core/agent.py‎
Lines changed: 2 additions & 2 deletions b/‎lib/core/agent.py‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎lib/core/common.py‎
Lines changed: 6 additions & 5 deletions b/‎lib/core/common.py‎
Lines changed: 6 additions & 5 deletions
diff --git a/‎lib/takeover/abstraction.py‎
Lines changed: 3 additions & 3 deletions b/‎lib/takeover/abstraction.py‎
Lines changed: 3 additions & 3 deletions
diff --git a/‎lib/takeover/xp_cmdshell.py‎
Lines changed: 6 additions & 6 deletions b/‎lib/takeover/xp_cmdshell.py‎
Lines changed: 6 additions & 6 deletions
diff --git a/‎lib/techniques/dns/use.py‎
Lines changed: 2 additions & 2 deletions b/‎lib/techniques/dns/use.py‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎procs/README.txt‎
Lines changed: 4 additions & 3 deletions b/‎procs/README.txt‎
Lines changed: 4 additions & 3 deletions
diff --git a/‎…ocs/mssqlserver/activate_sp_oacreate.txt‎ ‎…ocs/mssqlserver/activate_sp_oacreate.sql‎procs/mssqlserver/activate_sp_oacreate.txt renamed to procs/mssqlserver/activate_sp_oacreate.sql b/‎…ocs/mssqlserver/activate_sp_oacreate.txt‎ ‎…ocs/mssqlserver/activate_sp_oacreate.sql‎procs/mssqlserver/activate_sp_oacreate.txt renamed to procs/mssqlserver/activate_sp_oacreate.sql
diff --git a/‎…ocs/mssqlserver/configure_openrowset.txt‎ ‎…ocs/mssqlserver/configure_openrowset.sql‎procs/mssqlserver/configure_openrowset.txt renamed to procs/mssqlserver/configure_openrowset.sql b/‎…ocs/mssqlserver/configure_openrowset.txt‎ ‎…ocs/mssqlserver/configure_openrowset.sql‎procs/mssqlserver/configure_openrowset.txt renamed to procs/mssqlserver/configure_openrowset.sql
diff --git a/‎…cs/mssqlserver/configure_xp_cmdshell.txt‎ ‎…cs/mssqlserver/configure_xp_cmdshell.sql‎procs/mssqlserver/configure_xp_cmdshell.txt renamed to procs/mssqlserver/configure_xp_cmdshell.sql b/‎…cs/mssqlserver/configure_xp_cmdshell.txt‎ ‎…cs/mssqlserver/configure_xp_cmdshell.sql‎procs/mssqlserver/configure_xp_cmdshell.txt renamed to procs/mssqlserver/configure_xp_cmdshell.sql
diff --git a/‎…s/mssqlserver/create_new_xp_cmdshell.txt‎ ‎…s/mssqlserver/create_new_xp_cmdshell.sql‎procs/mssqlserver/create_new_xp_cmdshell.txt renamed to procs/mssqlserver/create_new_xp_cmdshell.sql b/‎…s/mssqlserver/create_new_xp_cmdshell.txt‎ ‎…s/mssqlserver/create_new_xp_cmdshell.sql‎procs/mssqlserver/create_new_xp_cmdshell.txt renamed to procs/mssqlserver/create_new_xp_cmdshell.sql
@@ -11,7 +11,7 @@
 
 from lib.core.common import Backend
 from lib.core.common import extractRegexResult
-from lib.core.common import getSPQLSnippet
+from lib.core.common import getSQLSnippet
 from lib.core.common import isDBMSVersionAtLeast
 from lib.core.common import isTechniqueAvailable
 from lib.core.common import randomInt
@@ -820,7 +820,7 @@ def replacePayload(self, inpStr, payload):
 
     def runAsDBMSUser(self, query):
         if conf.dCred and "Ad Hoc Distributed Queries" not in query:
-            query = getSPQLSnippet(DBMS.MSSQL, "run_statement_as_user", USER=conf.dbmsUsername, PASSWORD=conf.dbmsPassword, STATEMENT=query.replace("'", "''"))
+            query = getSQLSnippet(DBMS.MSSQL, "run_statement_as_user", USER=conf.dbmsUsername, PASSWORD=conf.dbmsPassword, STATEMENT=query.replace("'", "''"))
 
         return query
 
 
@@ -1543,15 +1543,15 @@ def parseXmlFile(xmlFile, handler):
     with contextlib.closing(StringIO(readCachedFileContent(xmlFile))) as stream:
         parse(stream, handler)
 
-def getSPQLSnippet(dbms, name, **variables):
+def getSQLSnippet(dbms, sfile, **variables):
     """
-    Returns content of SP(Q)L snippet located inside "procs" directory
+    Returns content of SQL snippet located inside 'procs/' directory
     """
 
-    filename = os.path.join(paths.SQLMAP_PROCS_PATH, DBMS_DIRECTORY_DICT[dbms], "%s.txt" % name)
+    filename = os.path.join(paths.SQLMAP_PROCS_PATH, DBMS_DIRECTORY_DICT[dbms], sfile if sfile.endswith('.sql') else "%s.sql" % sfile)
     checkFile(filename)
-    retVal = readCachedFileContent(filename)
 
+    retVal = readCachedFileContent(filename)
     retVal = re.sub(r"#.+", "", retVal)
     retVal = re.sub(r"(?s);\s+", "; ", retVal).strip()
 
@@ -1565,8 +1565,9 @@ def getSPQLSnippet(dbms, name, **variables):
         retVal = retVal.replace(_, randomInt())
 
     _ = re.search(r"%(\w+)%", retVal, re.I)
+
     if _:
-        errMsg = "unresolved variable '%s' in SPL snippet '%s'" % (_.group(1), name)
+        errMsg = "unresolved variable '%s' in SQL file '%s'" % (_.group(1), sfile)
         raise sqlmapGenericException, errMsg
 
     return retVal
 
@@ -8,7 +8,7 @@
 from extra.safe2bin.safe2bin import safechardecode
 from lib.core.common import dataToStdout
 from lib.core.common import Backend
-from lib.core.common import getSPQLSnippet
+from lib.core.common import getSQLSnippet
 from lib.core.common import isTechniqueAvailable
 from lib.core.common import readInput
 from lib.core.data import conf
@@ -163,12 +163,12 @@ def __initRunAs(self):
             choice = readInput(msg, default="Y")
 
             if not choice or choice in ("y", "Y"):
-                expression = getSPQLSnippet(DBMS.MSSQL, "configure_openrowset", ENABLE="1")
+                expression = getSQLSnippet(DBMS.MSSQL, "configure_openrowset", ENABLE="1")
                 inject.goStacked(expression)
 
         # TODO: add support for PostgreSQL
         #elif Backend.isDbms(DBMS.PGSQL):
-        #    expression = getSPQLSnippet(DBMS.PGSQL, "configure_dblink", ENABLE="1")
+        #    expression = getSQLSnippet(DBMS.PGSQL, "configure_dblink", ENABLE="1")
         #    inject.goStacked(expression)
 
     def initEnv(self, mandatory=True, detailed=False, web=False):
 
@@ -8,7 +8,7 @@
 from lib.core.agent import agent
 from lib.core.common import Backend
 from lib.core.common import getLimitRange
-from lib.core.common import getSPQLSnippet
+from lib.core.common import getSQLSnippet
 from lib.core.common import hashDBWrite
 from lib.core.common import isListLike
 from lib.core.common import isNoneValue
@@ -48,14 +48,14 @@ def __xpCmdshellCreate(self):
         if Backend.isVersionWithin(("2005", "2008")):
             logger.debug("activating sp_OACreate")
 
-            cmd = getSPQLSnippet(DBMS.MSSQL, "activate_sp_oacreate")
+            cmd = getSQLSnippet(DBMS.MSSQL, "activate_sp_oacreate")
             inject.goStacked(agent.runAsDBMSUser(cmd))
 
         self.__randStr = randomStr(lowercase=True)
         self.__xpCmdshellNew = "xp_%s" % randomStr(lowercase=True)
         self.xpCmdshellStr = "master..%s" % self.__xpCmdshellNew
 
-        cmd = getSPQLSnippet(DBMS.MSSQL, "create_new_xp_cmdshell", RANDSTR=self.__randStr, XP_CMDSHELL_NEW=self.__xpCmdshellNew)
+        cmd = getSQLSnippet(DBMS.MSSQL, "create_new_xp_cmdshell", RANDSTR=self.__randStr, XP_CMDSHELL_NEW=self.__xpCmdshellNew)
 
         if Backend.isVersionWithin(("2005", "2008")):
             cmd += ";RECONFIGURE WITH OVERRIDE"
@@ -67,7 +67,7 @@ def __xpCmdshellConfigure2005(self, mode):
         debugMsg += "stored procedure"
         logger.debug(debugMsg)
 
-        cmd = getSPQLSnippet(DBMS.MSSQL, "configure_xp_cmdshell", ENABLE=str(mode))
+        cmd = getSQLSnippet(DBMS.MSSQL, "configure_xp_cmdshell", ENABLE=str(mode))
 
         return cmd
 
@@ -77,9 +77,9 @@ def __xpCmdshellConfigure2000(self, mode):
         logger.debug(debugMsg)
 
         if mode == 1:
-            cmd = getSPQLSnippet(DBMS.MSSQL, "enable_xp_cmdshell_2000", ENABLE=str(mode))
+            cmd = getSQLSnippet(DBMS.MSSQL, "enable_xp_cmdshell_2000", ENABLE=str(mode))
         else:
-            cmd = getSPQLSnippet(DBMS.MSSQL, "disable_xp_cmdshell_2000", ENABLE=str(mode))
+            cmd = getSQLSnippet(DBMS.MSSQL, "disable_xp_cmdshell_2000", ENABLE=str(mode))
 
         return cmd
 
 
@@ -16,7 +16,7 @@
 from lib.core.common import dataToStdout
 from lib.core.common import decodeHexValue
 from lib.core.common import extractRegexResult
-from lib.core.common import getSPQLSnippet
+from lib.core.common import getSQLSnippet
 from lib.core.common import hashDBRetrieve
 from lib.core.common import hashDBWrite
 from lib.core.common import randomInt
@@ -67,7 +67,7 @@ def dnsUse(payload, expression):
                 nulledCastedField = agent.hexConvertField(nulledCastedField)
                 expressionReplaced = expression.replace(fieldToCastStr, nulledCastedField, 1)
 
-                expressionRequest = getSPQLSnippet(Backend.getIdentifiedDbms(), "dns_request", PREFIX=prefix, QUERY=expressionReplaced, SUFFIX=suffix, DOMAIN=conf.dName)
+                expressionRequest = getSQLSnippet(Backend.getIdentifiedDbms(), "dns_request", PREFIX=prefix, QUERY=expressionReplaced, SUFFIX=suffix, DOMAIN=conf.dName)
                 expressionUnescaped = unescaper.unescape(expressionRequest)
 
                 if Backend.getIdentifiedDbms() in (DBMS.MSSQL, DBMS.PGSQL):
 
@@ -1,3 +1,4 @@
-Files in this folder represent SPL/SQL snippets used by sqlmap on the target
-system. They are licensed under the terms of the GNU Lesser General Public
-License.
+Files in this folder represent SQL snippets used by sqlmap on the target
+system.
+They are licensed under the terms of the GNU Lesser General Public License
+where not specified otherwise.