feat: 支持解析所有SQLMap命令行参数，修复扫描配置显示问题

- Burp插件: 支持解析所有SQLMap命令行参数（除-r外），未识别的合法参数存入extraOptions
- Burp插件: 版本号更新到1.8.14与Git tag同步
- 后端: 修复_get_task_scan_options_sync返回SQLMap默认值的问题
- 后端: 返回requestFile参数供前端显示完整命令
- 前端: 命令行视图显示完整命令 python sqlmap.py，支持语法高亮
- 前端: 参数格式遵循sqlmap帮助文档（短参数空格分隔，长参数等号连接）
- 前端: 驼峰命名自动转换为kebab-case（如textOnly -> --text-only）
- 前端: 复制命令包含完整python sqlmap.py前缀

Author: lanshuizhiyue

src/backEnd/doc/sqlmap_cmd_help_doc.txt

@@ -19,6 +19,7 @@
 from third_lib.sqlmap.lib.core.settings import RESTAPI_UNSUPPORTED_OPTIONS
 from third_lib.sqlmap.lib.core.convert import encodeHex
 from third_lib.sqlmap.lib.core.data import logger
+from third_lib.sqlmap.lib.core.defaults import _defaults as SQLMAP_DEFAULTS
 from utils.content_type_helper import get_content_type_by_number
 
 
@@ -541,23 +542,38 @@ async def get_task_http_request_info(self, taskId):
 
     def _get_task_scan_options_sync(self, taskId: str):
         """同步获取扫描选项（在线程池中执行）"""
+        # 不应该返回给前端的内部选项
+        INTERNAL_OPTIONS = {'api', 'taskid', 'database', 'disableColoring', 'eta', 'headers'}
+        
         with DataStore.tasks_lock:
             if taskId not in DataStore.tasks:
                 return (None, False, "task not found", status.HTTP_404_NOT_FOUND)
             task = DataStore.tasks[taskId]
             task_options = task.get_options()
             res_options = []
             for option in task_options:
+                # 跳过内部选项
+                if option in INTERNAL_OPTIONS:
+                    continue
+                    
                 option_value = task_options[option]
-                if option_value is not None:
-                    if isinstance(option_value, list) and len(option_value) > 0:
-                        res_options.append({"option": option, "value": option_value})
-                    elif isinstance(option_value, bool) and option_value is True:
-                        res_options.append({"option": option, "value": option_value})
-                    elif isinstance(option_value, str) and len(option_value) > 0:
-                        res_options.append({"option": option, "value": option_value})
-                    elif isinstance(option_value, int) and option_value > 0:
-                        res_options.append({"option": option, "value": option_value})
+                if option_value is None:
+                    continue
+                
+                # 跳过与 SQLMap 默认值相同的选项（用户没有显式设置的）
+                default_value = SQLMAP_DEFAULTS.get(option)
+                if default_value is not None and option_value == default_value:
+                    continue
+                
+                # 只返回有意义的非默认值
+                if isinstance(option_value, list) and len(option_value) > 0:
+                    res_options.append({"option": option, "value": option_value})
+                elif isinstance(option_value, bool) and option_value is True:
+                    res_options.append({"option": option, "value": option_value})
+                elif isinstance(option_value, str) and len(option_value) > 0:
+                    res_options.append({"option": option, "value": option_value})
+                elif isinstance(option_value, (int, float)) and option_value > 0:
+                    res_options.append({"option": option, "value": option_value})
             data = {
                 "taskid": taskId,
                 "options": res_options,

src/backEnd/service/taskService.py

@@ -6,7 +6,7 @@
 
     <groupId>com.sqlmapwebui</groupId>
     <artifactId>sqlmap-webui-burp-legacy</artifactId>
-    <version>1.0.0</version>
+    <version>1.8.14</version>
     <packaging>jar</packaging>
 
     <name>SQLMap WebUI Burp Extension (Legacy API)</name>

src/burpEx/legacy-api/pom.xml

@@ -285,10 +285,22 @@ public ScanConfig getSelectedScanConfig() {
                 if (presetDatabase != null && selectedPresetName != null) {
                     PresetConfig presetConfig = presetDatabase.getConfigByName(selectedPresetName);
                     if (presetConfig != null) {
-                        ScanConfig config = ScanConfig.createDefault();
-                        config.setName(presetConfig.getName());
-                        parseArgsToConfig(presetConfig.getParameterString(), config);
-                        return config;
+                        String paramString = presetConfig.getParameterString();
+                        if (paramString != null && !paramString.trim().isEmpty()) {
+                            // 使用完整的ScanConfigParser解析参数字符串
+                            ParseResult result = ScanConfigParser.parse(paramString);
+                            if (result.isSuccess() && result.getConfig() != null) {
+                                ScanConfig config = result.getConfig();
+                                config.setName(presetConfig.getName());
+                                config.setDescription(presetConfig.getDescription());
+                                return config;
+                            }
+                        }
+                        // 如果参数字符串为空或解析失败，返回默认配置但保留名称
+                        ScanConfig fallback = ScanConfig.createDefault();
+                        fallback.setName(presetConfig.getName());
+                        fallback.setDescription(presetConfig.getDescription());
+                        return fallback;
                     }
                 }
                 // 如果数据库不可用，尝试从内存列表获取
@@ -314,36 +326,6 @@ public ScanConfig getSelectedScanConfig() {
         }
     }
 
-    /**
-     * 解析参数字符串到ScanConfig
-     */
-    private void parseArgsToConfig(String argsStr, ScanConfig config) {
-        if (argsStr == null || argsStr.isEmpty()) return;
-        
-        String[] parts = argsStr.split("\\s+");
-        for (String part : parts) {
-            if (part.startsWith("--level=")) {
-                try {
-                    config.setLevel(Integer.parseInt(part.substring(8)));
-                } catch (NumberFormatException ignored) {}
-            } else if (part.startsWith("--risk=")) {
-                try {
-                    config.setRisk(Integer.parseInt(part.substring(7)));
-                } catch (NumberFormatException ignored) {}
-            } else if (part.startsWith("--dbms=")) {
-                config.setDbms(part.substring(7));
-            } else if (part.startsWith("--technique=")) {
-                config.setTechnique(part.substring(12));
-            } else if (part.startsWith("--proxy=")) {
-                config.setProxy(part.substring(8));
-            } else if (part.equals("--force-ssl")) {
-                config.setForceSSL(true);
-            } else if (part.equals("--batch")) {
-                config.setBatch(true);
-            }
-        }
-    }
-    
     // ============ 连接状态管理 ============
 
     public boolean isConnected() {

src/burpEx/legacy-api/src/main/java/com/sqlmapwebui/burp/ConfigManager.java

@@ -88,6 +88,10 @@ public class ScanConfig {
     private boolean freshQueries = false; // --fresh-queries
     private int verbose = 1;            // -v/--verbose (0-6)
 
+    // ==================== 额外参数（支持任意SQLMap参数）====================
+    private String extraArgs = "";      // 存储所有未被识别的参数，原样传递给后端
+    private Map<String, Object> extraOptions = new HashMap<>();  // 存储解析后的额外参数，传递给后端
+    
     // ==================== 元数据 ====================
     private long createdAt;
     private long lastUsedAt;
@@ -290,6 +294,21 @@ public ScanConfig(String name) {
     public int getVerbose() { return verbose; }
     public void setVerbose(int verbose) { this.verbose = Math.max(0, Math.min(6, verbose)); }
 
+    // Extra Args
+    public String getExtraArgs() { return extraArgs; }
+    public void setExtraArgs(String extraArgs) { this.extraArgs = extraArgs != null ? extraArgs : ""; }
+    
+    // Extra Options
+    public Map<String, Object> getExtraOptions() { return extraOptions; }
+    public void setExtraOptions(Map<String, Object> extraOptions) { 
+        this.extraOptions = extraOptions != null ? extraOptions : new HashMap<>(); 
+    }
+    public void addExtraOption(String key, Object value) {
+        if (key != null && !key.isEmpty()) {
+            this.extraOptions.put(key, value);
+        }
+    }
+    
     // Metadata
     public long getCreatedAt() { return createdAt; }
     public void setCreatedAt(long createdAt) { this.createdAt = createdAt; }
@@ -380,6 +399,11 @@ public Map<String, Object> toOptionsMap() {
         if (freshQueries) options.put("freshQueries", true);
         if (verbose != 1) options.put("verbose", verbose);
 
+        // Extra Options - 支持任意额外的SQLMap参数
+        if (extraOptions != null && !extraOptions.isEmpty()) {
+            options.putAll(extraOptions);
+        }
+        
         return options;
     }
 
@@ -463,6 +487,10 @@ public ScanConfig copy() {
         copy.freshQueries = this.freshQueries;
         copy.verbose = this.verbose;
 
+        // Extra
+        copy.extraArgs = this.extraArgs;
+        copy.extraOptions = new HashMap<>(this.extraOptions);
+        
         // Metadata
         copy.createdAt = System.currentTimeMillis();
         copy.lastUsedAt = copy.createdAt;