小错误

Author: boy-hack

plugins/spider_file/Error_sqlinj.py

@@ -8,6 +8,7 @@
 from urllib import quote as urlencode
 from urllib import unquote as urldecode
 import re
+import os
 
 class dbms:
     DB2 = 'IBM DB2 database'

plugins/spider_file/Xss_scan.py

@@ -35,4 +35,4 @@ def audit(url,html):
             url_1 = url.replace("%s=%s"%(k,v),"%s=%s"%(k,urlencode(payload)))
             code, head, html, redirect_url, log = hackhttp.http(url_1)
             if payload in html:
-                security_hole(log["request"].replace(os.linesep,'</br>'),'XSS:' + url_1)
+                security_warning(log["request"].replace(os.linesep,'</br>'),'XSS:' + url_1)