mirror of
https://github.com/owasp-modsecurity/ModSecurity.git
synced 2025-08-17 04:06:08 +03:00
ed8b0c85d7
The capture action was implemented before the transaction concept. While partially ported to use the transaction, some of the elements were not freed correctly. Now it is fully ported to use the class Transaction.
62 lines
1.5 KiB
C++
62 lines
1.5 KiB
C++
/*
|
|
* ModSecurity, http://www.modsecurity.org/
|
|
* Copyright (c) 2015 Trustwave Holdings, Inc. (http://www.trustwave.com/)
|
|
*
|
|
* You may not use this file except in compliance with
|
|
* the License. You may obtain a copy of the License at
|
|
*
|
|
* http://www.apache.org/licenses/LICENSE-2.0
|
|
*
|
|
* If any of the files related to licensing are missing or if you have any
|
|
* other questions related to licensing please contact Trustwave Holdings, Inc.
|
|
* directly using the email address security@modsecurity.org.
|
|
*
|
|
*/
|
|
|
|
#include "operators/detect_sqli.h"
|
|
|
|
#include <string>
|
|
#include <list>
|
|
|
|
#include "operators/operator.h"
|
|
#include "others/libinjection/src/libinjection.h"
|
|
|
|
namespace modsecurity {
|
|
namespace operators {
|
|
|
|
|
|
bool DetectSQLi::evaluate(Transaction *transaction, const std::string &input) {
|
|
char fingerprint[8];
|
|
int issqli;
|
|
|
|
issqli = libinjection_sqli(input.c_str(), input.length(), fingerprint);
|
|
|
|
if (issqli) {
|
|
if (transaction) {
|
|
transaction->m_matched.push_back(fingerprint);
|
|
#ifndef NO_LOGS
|
|
transaction->debug(4, "detected SQLi using libinjection with " \
|
|
"fingerprint '" + std::string(fingerprint) + "' at: '" +
|
|
input + "'");
|
|
#endif
|
|
}
|
|
} else {
|
|
if (transaction) {
|
|
#ifndef NO_LOGS
|
|
transaction->debug(9, "detected SQLi: not able to find an " \
|
|
"inject on '" + input + "'");
|
|
#endif
|
|
}
|
|
}
|
|
|
|
if (negation) {
|
|
return issqli == 0;
|
|
}
|
|
|
|
return issqli != 0;
|
|
}
|
|
|
|
|
|
} // namespace operators
|
|
} // namespace modsecurity
|