Skip to content

Commit

Permalink
Fixes #966
Browse files Browse the repository at this point in the history
  • Loading branch information
@stasinopoulos
stasinopoulos committed Oct 14, 2024
1 parent 9fc625e commit d233b3c
Show file tree
Hide file tree
Showing 2 changed files with 7 additions and 7 deletions.
12 changes: 6 additions & 6 deletions src/core/injections/controller/controller.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -478,18 +478,18 @@ def host_injection(url, http_request_method, filename, timesec):
else:
# User-Agent HTTP header injection
if settings.USER_AGENT_INJECTION or \
menu.options.test_parameter and settings.USER_AGENT.lower() in menu.options.test_parameter.lower() or \
menu.options.skip_parameter and settings.USER_AGENT.lower() not in menu.options.skip_parameter.lower():
(type(menu.options.test_parameter) is str and settings.USER_AGENT.lower() in menu.options.test_parameter.lower()) or \
(type(menu.options.skip_parameter) is str and settings.USER_AGENT.lower() not in menu.options.skip_parameter.lower()):
user_agent_injection(url, http_request_method, filename, timesec)
# Referer HTTP header injection
if settings.REFERER_INJECTION or \
menu.options.test_parameter and settings.REFERER.lower() in menu.options.test_parameter.lower() or \
menu.options.skip_parameter and settings.REFERER.lower() not in menu.options.skip_parameter.lower():
(type(menu.options.test_parameter) is str and settings.REFERER.lower() in menu.options.test_parameter.lower()) or \
(type(menu.options.skip_parameter) is str and settings.REFERER.lower() not in menu.options.skip_parameter.lower()):
referer_injection(url, http_request_method, filename, timesec)
# Host HTTP header injection
if settings.HOST_INJECTION or \
menu.options.test_parameter and settings.HOST.lower() in menu.options.test_parameter.lower() or \
menu.options.skip_parameter and settings.HOST.lower() not in menu.options.skip_parameter.lower():
(type(menu.options.test_parameter) is str and settings.HOST.lower() in menu.options.test_parameter.lower()) or \
(type(menu.options.skip_parameter) is str and settings.HOST.lower() not in menu.options.skip_parameter.lower()):
host_injection(url, http_request_method, filename, timesec)

"""
Expand Down
2 changes: 1 addition & 1 deletion src/utils/settings.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -262,7 +262,7 @@ def sys_argv_errors():
DESCRIPTION = "The command injection exploiter"
AUTHOR = "Anastasios Stasinopoulos"
VERSION_NUM = "4.0"
REVISION = "99"
REVISION = "100"
STABLE_RELEASE = False
VERSION = "v"
if STABLE_RELEASE:
Expand Down

0 comments on commit d233b3c

Please sign in to comment.