File tree Expand file tree Collapse file tree 2 files changed +8
-2
lines changed Expand file tree Collapse file tree 2 files changed +8
-2
lines changed Original file line number Diff line number Diff line change 2020from thirdparty .six import unichr as _unichr
2121
2222# sqlmap version (<major>.<minor>.<month>.<monthly commit>)
23- VERSION = "1.6.10.6 "
23+ VERSION = "1.6.10.7 "
2424TYPE = "dev" if VERSION .count ('.' ) > 2 and VERSION .split ('.' )[- 1 ] != '0' else "stable"
2525TYPE_COLORS = {"dev" : 33 , "stable" : 90 , "pip" : 34 }
2626VERSION_STRING = "sqlmap/%s#%s" % ('.' .join (VERSION .split ('.' )[:- 1 ]) if VERSION .count ('.' ) > 2 and VERSION .split ('.' )[- 1 ] == '0' else VERSION , TYPE )
Original file line number Diff line number Diff line change @@ -20,6 +20,12 @@ def tamper(payload, **kwargs):
2020
2121 >>> tamper("1' AND SLEEP(5)#")
2222 '1' AND SLEEP(5)#'
23+ >>> tamper("1' AND SLEEP(5)#")
24+ '1' AND SLEEP(5)#'
2325 """
2426
25- return re .sub (r"[^\w]" , lambda match : "&#%d;" % ord (match .group (0 )), payload ) if payload else payload
27+ if payload :
28+ payload = re .sub (r"&#(\d+);" , lambda match : chr (int (match .group (1 ))), payload ) # NOTE: https://github.com/sqlmapproject/sqlmap/issues/5203
29+ payload = re .sub (r"[^\w]" , lambda match : "&#%d;" % ord (match .group (0 )), payload )
30+
31+ return payload
You can’t perform that action at this time.
0 commit comments