Skip to content

Commit ebd1d30

Browse files
bdamelebdamele
committed
done with test cases for Oracle - issue #312 
1 parent d594978 commit ebd1d30

File tree

1 file changed

+67
-3
lines changed

1 file changed

+67
-3
lines changed

xml/livetests.xml

+67-3
Original file line numberDiff line numberDiff line change
@@ -1928,7 +1928,6 @@
19281928
<item value="r'Database: SYS.+Table: USERS.+1 column.+SURNAME.+VARCHAR2'"/>
19291929
</parse>
19301930
</case>
1931-
19321931
<case name="Oracle boolean-based multi-threaded search enumeration - column given databases and table">
19331932
<switches>
19341933
<url value="http://debiandev/sqlmap/oracle/get_int.php?id=1"/>
@@ -1974,7 +1973,6 @@
19741973
<item value="r'Database: SYS.+Table: USERS.+1 column.+SURNAME.+VARCHAR2'"/>
19751974
</parse>
19761975
</case>
1977-
19781976
<!-- TODO: add IBM DB2 test cases -->
19791977
<case name="SQLite multi-threaded search enumeration - database">
19801978
<switches>
@@ -2150,6 +2148,73 @@
21502148
<item value="r'SELECT \* FROM users ORDER BY name \[5\].+1, luther, blisset.+2, fluffy, bunny.+3, wu, ming'"/>
21512149
</parse>
21522150
</case>
2151+
<case name="Oracle boolean-based multi-threaded custom SQL query enumeration">
2152+
<switches>
2153+
<url value="http://debiandev/sqlmap/oracle/get_int.php?id=1"/>
2154+
<threads value="4"/>
2155+
<tech value="B"/>
2156+
<query value="SELECT * FROM users WHERE ROWNUM=1"/>
2157+
</switches>
2158+
<parse>
2159+
<item value="r'SELECT \* FROM users WHERE ROWNUM=1 \[1\].+1, luther, blisset'"/>
2160+
</parse>
2161+
</case>
2162+
<case name="Oracle error-based multi-threaded custom SQL query enumeration">
2163+
<switches>
2164+
<url value="http://debiandev/sqlmap/oracle/get_int.php?id=1"/>
2165+
<threads value="4"/>
2166+
<tech value="E"/>
2167+
<query value="SELECT * FROM users WHERE ROWNUM=1"/>
2168+
</switches>
2169+
<parse>
2170+
<item value="r'SELECT \* FROM users WHERE ROWNUM=1 \[1\].+1, luther, blisset'"/>
2171+
</parse>
2172+
</case>
2173+
<case name="Oracle UNION query multi-threaded custom SQL query enumeration">
2174+
<switches>
2175+
<url value="http://debiandev/sqlmap/oracle/get_int.php?id=1"/>
2176+
<threads value="4"/>
2177+
<tech value="U"/>
2178+
<query value="SELECT * FROM users WHERE ROWNUM=1"/>
2179+
</switches>
2180+
<parse>
2181+
<item value="r'SELECT \* FROM users WHERE ROWNUM=1 \[1\].+1, luther, blisset'"/>
2182+
</parse>
2183+
</case>
2184+
<case name="Oracle boolean-based multi-threaded custom ordered SQL query enumeration">
2185+
<switches>
2186+
<url value="http://debiandev/sqlmap/oracle/get_int.php?id=1"/>
2187+
<threads value="4"/>
2188+
<tech value="B"/>
2189+
<query value="SELECT * FROM users ORDER BY name"/>
2190+
</switches>
2191+
<parse>
2192+
<item value="r'SELECT \* FROM users ORDER BY name \[5\].+1, luther, blisset.+2, fluffy, bunny.+3, wu, ming'"/>
2193+
</parse>
2194+
</case>
2195+
<case name="Oracle error-based multi-threaded custom ordered SQL query enumeration">
2196+
<switches>
2197+
<url value="http://debiandev/sqlmap/oracle/get_int.php?id=1"/>
2198+
<threads value="4"/>
2199+
<tech value="E"/>
2200+
<query value="SELECT * FROM users ORDER BY name"/>
2201+
</switches>
2202+
<parse>
2203+
<item value="r'SELECT \* FROM users ORDER BY name \[5\].+1, luther, blisset.+2, fluffy, bunny.+3, wu, ming'"/>
2204+
</parse>
2205+
</case>
2206+
<case name="Oracle UNION query multi-threaded custom ordered SQL query enumeration">
2207+
<switches>
2208+
<url value="http://debiandev/sqlmap/oracle/get_int.php?id=1"/>
2209+
<threads value="4"/>
2210+
<tech value="U"/>
2211+
<query value="SELECT * FROM users ORDER BY name"/>
2212+
</switches>
2213+
<parse>
2214+
<item value="r'SELECT \* FROM users ORDER BY name \[5\].+1, luther, blisset.+2, fluffy, bunny.+3, wu, ming'"/>
2215+
</parse>
2216+
</case>
2217+
<!-- TODO: add IBM DB2 test cases -->
21532218
<case name="SQLite boolean-based multi-threaded custom SQL query enumeration">
21542219
<switches>
21552220
<url value="http://debiandev/sqlmap/sqlite/get_int.php?id=1"/>
@@ -2191,7 +2256,6 @@
21912256
<query value="SELECT * FROM users ORDER BY name"/>
21922257
</switches>
21932258
<parse>
2194-
<!-- NOTE: it is not sorted on purpose because UNION does not play well with ORDER BY and it is stripped -->
21952259
<item value="r'SELECT \* FROM users ORDER BY name \[4\].+1, luther, blisset.+2, fluffy, bunny.+3, wu, ming'"/>
21962260
</parse>
21972261
</case>

0 commit comments

Comments
 (0)