Skip to content

Commit c871a37

Browse files
stamparmstamparm
committed
Demotion of MySQL/FLOOR payloads
1 parent a4c1afa commit c871a37

File tree

3 files changed

+11
-11
lines changed

3 files changed

+11
-11
lines changed

data/txt/sha256sums.txt

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -79,7 +79,7 @@ e2febc92f9686eacf17a0054f175917b783cc6638ca570435a5203b03245fc18 data/xml/banne
7979
0223157364ea212de98190e7c6f46f9d2ee20cf3d17916d1af16e857bb5dc575 data/xml/boundaries.xml
8080
02a7f6d6a0e023c3f087f78ab49cfb99e81df2b42e32718f877d90ab220486dc data/xml/errors.xml
8181
d0b094a110bccec97d50037cc51445191561c0722ec53bf2cebe1521786e2451 data/xml/payloads/boolean_blind.xml
82-
f2b711ea18f20239ba9902732631684b61106d4a4271669125a4cf41401b3eaf data/xml/payloads/error_based.xml
82+
6a0ee35da88864f396c62363ead2cd30fa0279b7a81861323657f852256afd5d data/xml/payloads/error_based.xml
8383
b0f434f64105bd61ab0f6867b3f681b97fa02b4fb809ac538db382d031f0e609 data/xml/payloads/inline_query.xml
8484
0648264166455010921df1ec431e4c973809f37ef12cbfea75f95029222eb689 data/xml/payloads/stacked_queries.xml
8585
997556b6170964a64474a2e053abe33cf2cf029fb1acec660d4651cc67a3c7e1 data/xml/payloads/time_blind.xml
@@ -188,7 +188,7 @@ c1cb56f2a43e9f2f6b25d5f3d504e856ea21df6fc14af5e37b1000feef2bdb5a lib/core/optio
188188
48797d6c34dd9bb8a53f7f3794c85f4288d82a9a1d6be7fcf317d388cb20d4b3 lib/core/replication.py
189189
0b8c38a01bb01f843d94a6c5f2075ee47520d0c4aa799cecea9c3e2c5a4a23a6 lib/core/revision.py
190190
888daba83fd4a34e9503fe21f01fef4cc730e5cde871b1d40e15d4cbc847d56c lib/core/session.py
191-
0c7b29f4d166a695cdc0cecf14e38ea29a3cc2725e551c8222503e810d4bff97 lib/core/settings.py
191+
047bea3b07a95d1c2778e76aebe98d2f081fb26a546ea35ee5a186148acefa4b lib/core/settings.py
192192
cd5a66deee8963ba8e7e9af3dd36eb5e8127d4d68698811c29e789655f507f82 lib/core/shell.py
193193
bcb5d8090d5e3e0ef2a586ba09ba80eef0c6d51feb0f611ed25299fbb254f725 lib/core/subprocessng.py
194194
d35650179816193164a5f177102f18379dfbe6bb6d40fbb67b78d907b41c8038 lib/core/target.py

data/xml/payloads/error_based.xml

Lines changed: 8 additions & 8 deletions
Original file line numberDiff line numberDiff line change
@@ -175,7 +175,7 @@
175175
<test>
176176
<title>MySQL &gt;= 5.0 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (FLOOR)</title>
177177
<stype>2</stype>
178-
<level>2</level>
178+
<level>4</level>
179179
<risk>1</risk>
180180
<clause>1,2,3,8,9</clause>
181181
<where>1</where>
@@ -199,7 +199,7 @@
199199
<test>
200200
<title>MySQL &gt;= 5.0 OR error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (FLOOR)</title>
201201
<stype>2</stype>
202-
<level>2</level>
202+
<level>4</level>
203203
<risk>3</risk>
204204
<clause>1,2,3,8,9</clause>
205205
<!-- Despite this is an OR payload, keep where to 1 because otherwise it will not work when injecting in ORDER BY or GROUP BY -->
@@ -342,7 +342,7 @@
342342
<test>
343343
<title>MySQL &gt;= 4.1 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (FLOOR)</title>
344344
<stype>2</stype>
345-
<level>3</level>
345+
<level>5</level>
346346
<risk>1</risk>
347347
<clause>1,2,3,8,9</clause>
348348
<where>1</where>
@@ -367,7 +367,7 @@
367367
<!-- It does not work against ORDER BY or GROUP BY clause -->
368368
<title>MySQL &gt;= 4.1 OR error-based - WHERE or HAVING clause (FLOOR)</title>
369369
<stype>2</stype>
370-
<level>3</level>
370+
<level>5</level>
371371
<risk>3</risk>
372372
<clause>1,8,9</clause>
373373
<where>1</where>
@@ -392,7 +392,7 @@
392392
<test>
393393
<title>MySQL OR error-based - WHERE or HAVING clause (FLOOR)</title>
394394
<stype>2</stype>
395-
<level>4</level>
395+
<level>5</level>
396396
<risk>3</risk>
397397
<clause>1,8,9</clause>
398398
<where>2</where>
@@ -1027,7 +1027,7 @@
10271027
<test>
10281028
<title>MySQL &gt;= 5.0 error-based - Parameter replace (FLOOR)</title>
10291029
<stype>2</stype>
1030-
<level>2</level>
1030+
<level>4</level>
10311031
<risk>1</risk>
10321032
<clause>1,2,3,9</clause>
10331033
<where>3</where>
@@ -1316,7 +1316,7 @@
13161316
<test>
13171317
<title>MySQL &gt;= 5.0 error-based - ORDER BY, GROUP BY clause (FLOOR)</title>
13181318
<stype>2</stype>
1319-
<level>4</level>
1319+
<level>5</level>
13201320
<risk>1</risk>
13211321
<clause>2,3</clause>
13221322
<where>1</where>
@@ -1376,7 +1376,7 @@
13761376
<test>
13771377
<title>MySQL &gt;= 4.1 error-based - ORDER BY, GROUP BY clause (FLOOR)</title>
13781378
<stype>2</stype>
1379-
<level>3</level>
1379+
<level>5</level>
13801380
<risk>1</risk>
13811381
<clause>2,3</clause>
13821382
<where>1</where>

lib/core/settings.py

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -19,7 +19,7 @@
1919
from thirdparty import six
2020

2121
# sqlmap version (<major>.<minor>.<month>.<monthly commit>)
22-
VERSION = "1.10.1.77"
22+
VERSION = "1.10.1.78"
2323
TYPE = "dev" if VERSION.count('.') > 2 and VERSION.split('.')[-1] != '0' else "stable"
2424
TYPE_COLORS = {"dev": 33, "stable": 90, "pip": 34}
2525
VERSION_STRING = "sqlmap/%s#%s" % ('.'.join(VERSION.split('.')[:-1]) if VERSION.count('.') > 2 and VERSION.split('.')[-1] == '0' else VERSION, TYPE)

0 commit comments

Comments
 (0)