MCPcopy Index your code
hub / github.com/sqlmapproject/sqlmap / checkSuhosinPatch

Function checkSuhosinPatch

lib/controller/checks.py:976–997  ·  view source on GitHub ↗

Checks for existence of Suhosin-patch (and alike) protection mechanism(s)

(injection)

Source from the content-addressed store, hash-verified

974
975@stackedmethod
976def checkSuhosinPatch(injection):
977 """
978 Checks for existence of Suhosin-patch (and alike) protection mechanism(s)
979 """
980
981 if injection.place in (PLACE.GET, PLACE.URI):
982 debugMsg = "checking for parameter length "
983 debugMsg += "constraining mechanisms"
984 logger.debug(debugMsg)
985
986 pushValue(kb.injection)
987
988 kb.injection = injection
989 randInt = randomInt()
990
991 if not checkBooleanExpression("%d=%s%d" % (randInt, ' ' * SUHOSIN_MAX_VALUE_LENGTH, randInt)):
992 warnMsg = "parameter length constraining "
993 warnMsg += "mechanism detected (e.g. Suhosin patch). "
994 warnMsg += "Potential problems in enumeration phase can be expected"
995 logger.warning(warnMsg)
996
997 kb.injection = popValue()
998
999@stackedmethod
1000def checkFilteredChars(injection):

Callers 1

checkSqlInjectionFunction · 0.85

Calls 5

pushValueFunction · 0.90
randomIntFunction · 0.90
checkBooleanExpressionFunction · 0.90
popValueFunction · 0.90
debugMethod · 0.80

Tested by

no test coverage detected

Used in the wild real call sites across dependent graphs

searching dependent graphs…