Commit 43a92e42 authored by fimap.dev@gmail.com's avatar fimap.dev@gmail.com

Fixed some bugs.

parent 6514d537
......@@ -4,7 +4,7 @@ skankque <http://code.google.com/u/skankque>
For reporting a bug.
wishnusakti <http://code.google.com/u/wishnusakti>
For reporting a bug.
For reporting a bug and bringing up some good ideas!
ulises2k <http://code.google.com/u/ulises2k>
For reporting a bug.
......@@ -71,3 +71,10 @@ cmendozabenitez <http://code.google.com/u/cmendozabenitez>
P. Campers <http://code.google.com/u/p.campers>
For comming up with some good ideas!
Deep Freeze <deep_freeze [ATOM] mail.ru>
For reporting a few bugs!
timeisflowing <http://code.google.com/u/timeisflowing>
For reporting a bug and solving it himself :)
......@@ -155,12 +155,15 @@ def show_credits():
def show_greetings():
print "## Greetings:"
print " - Rita, because you are the best girl on earth."
print "## Circle of awesome people:"
print "## Greetings to the Circle of Awesome People:"
print "(alphabetically)"
print " - Exorzist"
print " - IngoWer"
print " - Invisible"
print " - Ruun"
print " - Yasmin"
print " - Whole Netherlands"
print "## You guys and lads are epic and unreplacable."
sys.exit(0)
def show_ip():
......
......@@ -161,13 +161,18 @@ class targetScanner (baseClass.baseClass):
self._log("Requesting: '%s' with POST('%s')..." %(tmpurl, postdata), self.LOG_DEBUG)
code = self.doPostRequest(tmpurl, postdata)
if (code.find(find) != -1):
if (not isPost):
self._log("Possible file inclusion found blindly! -> '%s' with Parameter '%s'." %(tmpurl, k), self.LOG_ALWAYS)
else:
self._log("Possible file inclusion found blindly! -> '%s' with POST-Parameter '%s'." %(tmpurl, k), self.LOG_ALWAYS)
if (code == None):
self._log("Code == None. Skipping testing of the URL.", self.LOG_DEBUG)
doBreak = True
rep = self.identifyVuln(self.Target_URL, self.params, k, post, None, isPost, (goBackSymbols * i, True), isUnix)
else:
if (code.find(find) != -1):
if (not isPost):
self._log("Possible file inclusion found blindly! -> '%s' with Parameter '%s'." %(tmpurl, k), self.LOG_ALWAYS)
else:
self._log("Possible file inclusion found blindly! -> '%s' with POST-Parameter '%s'." %(tmpurl, k), self.LOG_ALWAYS)
doBreak = True
rep = self.identifyVuln(self.Target_URL, self.params, k, post, None, isPost, (goBackSymbols * i, True), isUnix)
else:
# Previous result was none. Assuming that we can break here.
self._log("Code == None. Skipping testing of the URL.", self.LOG_DEBUG)
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment