Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

xdot.py Error when start scanning from GUI #1327

Closed
bitbeans opened this issue Mar 6, 2014 · 4 comments
Closed

xdot.py Error when start scanning from GUI #1327

bitbeans opened this issue Mar 6, 2014 · 4 comments

Comments

@bitbeans
Copy link

bitbeans commented Mar 6, 2014

./w3af_gui

Starting w3af, running on:
Python version: 2.7.6 (default, Feb 26 2014, 13:22:43) [GCC 4.8.2]
GTK version: 2.24.22
PyGTK version: 2.24.0
w3af version:
w3af - Web Application Attack and Audit Framework
Version: 1.6
Revision: 33d1f0e - 29 Jan 2014 12:39
Author: Andres Riancho and the w3af team.

When i start scanning an URL i get:

The page is written in: "en".
New URL found by web_spider plugin: "https://xxxxxxxxxxx"
Exception in thread GTKDraw:
Traceback (most recent call last):
File "/usr/lib/python2.7/threading.py", line 810, in __bootstrap_inner
self.run()
File "/usr/lib/python2.7/threading.py", line 763, in run
self.__target(_self.__args, *_self.__kwargs)
File "/home/user/w3af/core/ui/gui/scanrun.py", line 319, in _draw_real
new_widget.set_dotcode(dotcode)
File "/usr/local/lib/python2.7/dist-packages/xdot.py", line 1411, in set_dotcode
self.set_xdotcode(xdotcode)
File "/usr/local/lib/python2.7/dist-packages/xdot.py", line 1427, in set_xdotcode
self.graph = parser.parse()
File "/usr/local/lib/python2.7/dist-packages/xdot.py", line 1122, in parse
DotParser.parse(self)
File "/usr/local/lib/python2.7/dist-packages/xdot.py", line 932, in parse
self.parse_graph()
File "/usr/local/lib/python2.7/dist-packages/xdot.py", line 941, in parse_graph
self.parse_stmt()
File "/usr/local/lib/python2.7/dist-packages/xdot.py", line 987, in parse_stmt
self.handle_node(id, attrs)
File "/usr/local/lib/python2.7/dist-packages/xdot.py", line 1097, in handle_node
shapes.extend(parser.parse())
File "/usr/local/lib/python2.7/dist-packages/xdot.py", line 579, in parse
w = s.read_number()
File "/usr/local/lib/python2.7/dist-packages/xdot.py", line 477, in read_number
return int(self.read_code())
ValueError: invalid literal for int() with base 10: '108.31'

Found 1 URLs and 1 different injections points.
The URL list is:
[...]

After this error, the GUI is freezed and i need to kill the process.
@andresriancho
Copy link
Owner

Related with #1089

@andresriancho
Copy link
Owner

Please make me a favor and test the following:

These are some commands you might need to achieve what I recommend:

cd w3af
git checkout feature/module

pip install --upgrade xdot==0.6
pip freeze | grep xdot
# Make sure it says 0.6

vi core/ui/gui/dependency_check/requirements.py
# Replace the 0.4 by a 0.6

./w3af_gui
# And reproduce

@andresriancho
Copy link
Owner

You can also try this: https://code.google.com/p/jrfonseca/issues/detail?id=93&q=int

@andresriancho andresriancho mentioned this issue Mar 6, 2014
Closed
andresriancho added a commit that referenced this issue Mar 6, 2014
@andresriancho
Fix xdot.py Error when start scanning from GUI #1327
01ec6b7
@andresriancho
Copy link
Owner

After the fix I've pushed, I believe that just doing:

cd w3af
git pull
git checkout feature/module
./w3af_gui

Would be enough.

@andresriancho andresriancho mentioned this issue Mar 6, 2014
Closed
andresriancho added a commit that referenced this issue Aug 26, 2015
@andresriancho
Squashed 'w3af/plugins/attack/db/sqlmap/' changes from 75ed5f7..1cf0125
854c0ce 
1cf0125 Minor refactoring
a33b045 Implementation for an Issue #1360
2c2f83f Minor code consistency patch
1f5e660 Fixes #1357
76c8ce0 More flexible --sql-file
337eb98 Fixes #1347
690347a Bug fix (non-ASCII chars in command line caused gibberish in unhandled messages)
9fb0eb3 Blank removal
1204141 Fixes #1350
fef8f20 Minor reporting patch
b8f2c2b Merge pull request #1351 from KxCode/patch-1
3ebb3e6 fix removeDynamicContent bug
f609158 Adding new error message (when short options carry illegal '=')
383316f Fixing issues caused by 9ad1d122f44b91fcfc9db414506526d59b5c7b31 (better approach)
8806ce7 Patch for an Issue #1341
54d6532 Patch for negative logic (e.g. OR) cases (reported privately)
023def3 Fixes #1336
c9d1c4d Fixes #1337
713d538 Potential patch for an Issue #1337
310d79b Adding special variable 'lastPage' to the eval code (by request from ML)
b010fda Switch --save becomes an option (taking file path where to save config file)
f83de44 Merge pull request #1330 from flsf/master
9adefb3 Minor change
2c1cde0 Minor fix (reported over ML - ignore saving of conf.saveCmdline)
8ea8b16 Minor cosmetics
9ad1d12 Minor patch (Issue #1327)
e5863d8 Minor patch
236b774 Merge pull request #1328 from jerrypy/master
1ac27e9 fixed pipe and zoombie problems
62f3569 Bug fix (ML) - when cookies have blank expiration time
ce64d97 Fixes #1322
971f59a Minor update
c5f3c0c Fixes #1324
e623ee6 Better approach for #1320
bcb2582 Fixes #1320
301aca5 Fixes #1319
ba86153 Fixes #1318
401905b Minor improvement to UNION file write
64b45f2 Fixes #1316
e3553ae Missing import
b0bc314 Fixes #1315
e7af081 Minor patch
314df09 Fixes #1314
ff6b62a Important additional patch for #1170 (for PgSQL >= 9.0)
b6ea2fd Fixes #1170
8df3d7a Minor enhancement for beep
a905b8d Fixes #1312
58002c5 Minor cosmetics
cece2cb Minor cosmetics
358651b Fixes #1313

git-subtree-dir: w3af/plugins/attack/db/sqlmap
git-subtree-split: 1cf012521d949fc8e03575a9fd61369aed2092fa
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@andresriancho @bitbeans