sqlmapproject/sqlmap

Pattern Findings

1056 matches across 13 categories. Click a row to expand file-level details.

Cross-File Repetition419 hits · 2095 pts

Severity	File	Line	Snippet
HIGH	sqlmapapi.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	sqlmap.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/__init__.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/__init__.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/raima/enumeration.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/raima/fingerprint.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/raima/filesystem.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/raima/__init__.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/raima/takeover.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/raima/connector.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/raima/syntax.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/sybase/enumeration.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/sybase/fingerprint.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/sybase/filesystem.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/sybase/__init__.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/sybase/takeover.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/sybase/connector.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/sybase/syntax.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/extremedb/enumeration.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/extremedb/fingerprint.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/extremedb/filesystem.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/extremedb/__init__.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/extremedb/takeover.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/extremedb/connector.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/extremedb/syntax.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/clickhouse/enumeration.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/clickhouse/fingerprint.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/clickhouse/filesystem.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/clickhouse/__init__.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/clickhouse/takeover.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/clickhouse/connector.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/clickhouse/syntax.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/postgresql/enumeration.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/postgresql/fingerprint.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/postgresql/filesystem.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/postgresql/__init__.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/postgresql/takeover.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/postgresql/connector.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/postgresql/syntax.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/presto/enumeration.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/presto/fingerprint.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/presto/filesystem.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/presto/__init__.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/presto/takeover.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/presto/connector.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/presto/syntax.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/h2/enumeration.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/h2/fingerprint.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/h2/filesystem.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/h2/__init__.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/h2/takeover.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/h2/connector.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/h2/syntax.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/virtuoso/enumeration.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/virtuoso/fingerprint.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/virtuoso/filesystem.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/virtuoso/__init__.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/virtuoso/takeover.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/virtuoso/connector.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
HIGH	plugins/dbms/virtuoso/syntax.py	0	copyright (c) 2006-2026 sqlmap developers (https://sqlmap.org) see the file 'license' for copying permission
359 more matches not shown…

Deep Nesting321 hits · 282 pts

Severity	File	Line
LOW	sqlmap.py	141
LOW	plugins/dbms/sybase/enumeration.py	116
LOW	plugins/dbms/sybase/enumeration.py	164
LOW	plugins/dbms/sybase/fingerprint.py	63
LOW	plugins/dbms/postgresql/fingerprint.py	28
LOW	plugins/dbms/postgresql/fingerprint.py	94
LOW	plugins/dbms/presto/fingerprint.py	60
LOW	plugins/dbms/maxdb/enumeration.py	63
LOW	plugins/dbms/maxdb/enumeration.py	103
LOW	plugins/dbms/oracle/enumeration.py	29
LOW	plugins/dbms/hsqldb/fingerprint.py	66
LOW	plugins/dbms/mysql/fingerprint.py	32
LOW	plugins/dbms/mysql/fingerprint.py	95
LOW	plugins/dbms/mysql/fingerprint.py	167
LOW	plugins/dbms/mssqlserver/enumeration.py	69
LOW	plugins/dbms/mssqlserver/enumeration.py	173
LOW	plugins/dbms/mssqlserver/enumeration.py	278
LOW	plugins/dbms/db2/fingerprint.py	25
LOW	plugins/generic/misc.py	38
LOW	plugins/generic/misc.py	118
LOW	plugins/generic/databases.py	99
LOW	plugins/generic/databases.py	213
LOW	plugins/generic/databases.py	473
LOW	plugins/generic/databases.py	1048
LOW	plugins/generic/enumeration.py	41
LOW	plugins/generic/custom.py	42
LOW	plugins/generic/custom.py	96
LOW	plugins/generic/custom.py	141
LOW	plugins/generic/users.py	100
LOW	plugins/generic/users.py	170
LOW	plugins/generic/users.py	377
LOW	plugins/generic/filesystem.py	50
LOW	plugins/generic/filesystem.py	137
LOW	plugins/generic/filesystem.py	216
LOW	plugins/generic/takeover.py	104
LOW	plugins/generic/search.py	51
LOW	plugins/generic/search.py	143
LOW	plugins/generic/search.py	348
LOW	plugins/generic/syntax.py	25
LOW	plugins/generic/entries.py	63
LOW	plugins/generic/entries.py	482
LOW	plugins/generic/entries.py	523
LOW	plugins/generic/entries.py	590
LOW	tamper/space2comment.py	16
LOW	tamper/space2mysqlblank.py	21
LOW	tamper/randomcase.py	20
LOW	tamper/space2mysqldash.py	20
LOW	tamper/space2dash.py	16
LOW	tamper/randomcomments.py	17
LOW	tamper/ifnull2ifisnull.py	16
LOW	tamper/space2plus.py	16
LOW	tamper/space2mssqlblank.py	21
LOW	tamper/ifnull2casewhenisnull.py	16
LOW	tamper/space2randomblank.py	18
LOW	tamper/space2morehash.py	25
LOW	tamper/space2mssqlhash.py	13
LOW	tamper/if2case.py	17
LOW	tamper/percentage.py	19
LOW	tamper/unmagicquotes.py	18
LOW	tamper/space2hash.py	22
261 more matches not shown…

Excessive Try-Catch Wrapping103 hits · 121 pts

Severity	File	Line	Snippet
LOW	sqlmap.py	212	except Exception as ex:
LOW	sqlmap.py	223	except Exception as ex:
LOW	plugins/dbms/cache/connector.py	42	except Exception as ex:
LOW	plugins/dbms/cache/connector.py	49	except Exception as ex:
LOW	plugins/dbms/cache/connector.py	58	except Exception as ex:
LOW	plugins/dbms/cache/connector.py	68	except Exception as ex:
MEDIUM	plugins/dbms/cache/connector.py	55	def fetchall(self):
LOW	plugins/dbms/snowflake/connector.py	48	except Exception as ex:
LOW	plugins/dbms/snowflake/connector.py	57	except Exception as ex:
LOW	plugins/dbms/snowflake/connector.py	64	except Exception as ex:
MEDIUM	plugins/dbms/snowflake/connector.py	54	def fetchall(self):
MEDIUM	plugins/dbms/snowflake/connector.py	61	def execute(self, query):
LOW	plugins/dbms/hsqldb/connector.py	42	except Exception as ex:
LOW	plugins/dbms/hsqldb/connector.py	49	except Exception as ex:
LOW	plugins/dbms/hsqldb/connector.py	58	except Exception as ex:
LOW	plugins/dbms/hsqldb/connector.py	68	except Exception as ex:
MEDIUM	plugins/dbms/hsqldb/connector.py	55	def fetchall(self):
LOW	plugins/generic/connector.py	54	except Exception as ex:
MEDIUM	plugins/generic/connector.py	48	def close(self):
LOW	extra/cloak/cloak.py	42	except Exception as ex:
LOW	extra/vulnserver/vulnserver.py	156	except Exception:
LOW	extra/vulnserver/vulnserver.py	275	except Exception as ex:
MEDIUM	extra/vulnserver/vulnserver.py	153	def finish_request(self, args, *kwargs):
LOW	lib/core/update.py	57	except Exception as ex:
LOW	lib/core/update.py	83	except Exception as ex:
LOW	lib/core/update.py	117	except Exception as ex:
LOW	lib/core/update.py	144	except Exception as ex:
LOW	lib/core/subprocessng.py	102	except Exception as ex:
LOW	lib/core/subprocessng.py	123	except Exception as ex:
LOW	lib/core/compat.py	360	except Exception:
LOW	lib/core/compat.py	423	except Exception:
MEDIUM	lib/core/option.py	438	def next(self):
LOW	lib/core/option.py	2738	except Exception as ex:
LOW	lib/core/option.py	2748	except Exception as ex:
LOW	lib/core/option.py	2755	except Exception as ex:
LOW	lib/core/option.py	210	except Exception as ex:
LOW	lib/core/option.py	525	except Exception as ex:
LOW	lib/core/option.py	814	except Exception as ex:
LOW	lib/core/option.py	848	except Exception as ex:
LOW	lib/core/option.py	913	except Exception as ex:
LOW	lib/core/option.py	935	except Exception as ex:
LOW	lib/core/option.py	996	except Exception as ex:
LOW	lib/core/option.py	1163	except Exception as ex:
LOW	lib/core/option.py	1675	except Exception as ex:
LOW	lib/core/option.py	1694	except Exception as ex:
LOW	lib/core/option.py	2774	except Exception as ex:
LOW	lib/core/option.py	2781	except Exception as ex:
LOW	lib/core/dump.py	445	except Exception as ex:
LOW	lib/core/dump.py	640	except Exception as ex:
LOW	lib/core/bigarray.py	220	except Exception as ex:
LOW	lib/core/bigarray.py	330	except Exception as ex:
LOW	lib/core/threads.py	105	except Exception as ex:
LOW	lib/core/threads.py	183	except Exception as ex:
LOW	lib/core/threads.py	234	except Exception as ex:
MEDIUM	lib/core/threads.py	98	def exceptionHandledFunction(threadFunction, silent=False):
MEDIUM	lib/core/common.py	1076	def dataToDumpFile(dumpFile, data):
LOW	lib/core/common.py	740	except Exception:
LOW	lib/core/common.py	2405	except Exception as ex:
LOW	lib/core/common.py	2766	except Exception as ex:
LOW	lib/core/common.py	4022	except Exception as ex:
43 more matches not shown…

Over-Commented Block95 hits · 92 pts

Severity	File	Line	Snippet
LOW	tamper/space2mssqlblank.py	41	# SOH 01 start of heading
LOW	extra/shutils/strip.sh	1	#!/bin/bash
LOW	extra/runcmd/src/runcmd/stdafx.h	1	// stdafx.h : include file for standard system include files,
LOW	extra/runcmd/src/runcmd/stdafx.cpp	1	// stdafx.cpp : source file that includes just the standard includes
LOW	extra/icmpsh/icmpsh-m.c	21	#include <sys/socket.h>
LOW	extra/icmpsh/__init__.py	1	#!/usr/bin/env python
LOW	extra/icmpsh/icmpsh-s.c	21	#include <winsock2.h>
LOW	extra/icmpsh/icmpsh_m.py	1	#!/usr/bin/env python
LOW	extra/icmpsh/icmpsh-m.pl	1	#!/usr/bin/env perl
LOW	lib/core/compat.py	61
LOW	thirdparty/wininetpton/__init__.py	1	#!/usr/bin/env python
LOW	thirdparty/chardet/langhungarianmodel.py	1	######################## BEGIN LICENSE BLOCK ########################
LOW	thirdparty/chardet/langhungarianmodel.py	21	#
LOW	thirdparty/chardet/mbcssm.py	1	######################## BEGIN LICENSE BLOCK ########################
LOW	thirdparty/chardet/langthaimodel.py	1	######################## BEGIN LICENSE BLOCK ########################
LOW	thirdparty/chardet/langthaimodel.py	21	#
LOW	thirdparty/chardet/compat.py	1	######################## BEGIN LICENSE BLOCK ########################
LOW	thirdparty/chardet/langbulgarianmodel.py	1	######################## BEGIN LICENSE BLOCK ########################
LOW	thirdparty/chardet/langbulgarianmodel.py	21	#
LOW	thirdparty/chardet/euckrprober.py	1	######################## BEGIN LICENSE BLOCK ########################
LOW	thirdparty/chardet/sjisprober.py	1	######################## BEGIN LICENSE BLOCK ########################
LOW	thirdparty/chardet/cp949prober.py	1	######################## BEGIN LICENSE BLOCK ########################
LOW	thirdparty/chardet/__init__.py	1	######################## BEGIN LICENSE BLOCK ########################
LOW	thirdparty/chardet/euctwfreq.py	1	######################## BEGIN LICENSE BLOCK ########################
LOW	thirdparty/chardet/euctwfreq.py	21	#
LOW	thirdparty/chardet/langhebrewmodel.py	1	######################## BEGIN LICENSE BLOCK ########################
LOW	thirdparty/chardet/langhebrewmodel.py	21	# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
LOW	thirdparty/chardet/chardistribution.py	1	######################## BEGIN LICENSE BLOCK ########################
LOW	thirdparty/chardet/latin1prober.py	1	######################## BEGIN LICENSE BLOCK ########################
LOW	thirdparty/chardet/charsetprober.py	1	######################## BEGIN LICENSE BLOCK ########################
LOW	thirdparty/chardet/gb2312prober.py	1	######################## BEGIN LICENSE BLOCK ########################
LOW	thirdparty/chardet/mbcharsetprober.py	1	######################## BEGIN LICENSE BLOCK ########################
LOW	thirdparty/chardet/langcyrillicmodel.py	1	######################## BEGIN LICENSE BLOCK ########################
LOW	thirdparty/chardet/euctwprober.py	1	######################## BEGIN LICENSE BLOCK ########################
LOW	thirdparty/chardet/codingstatemachine.py	1	######################## BEGIN LICENSE BLOCK ########################
LOW	thirdparty/chardet/escprober.py	1	######################## BEGIN LICENSE BLOCK ########################
LOW	thirdparty/chardet/universaldetector.py	1	######################## BEGIN LICENSE BLOCK ########################
LOW	thirdparty/chardet/utf8prober.py	1	######################## BEGIN LICENSE BLOCK ########################
LOW	thirdparty/chardet/gb2312freq.py	1	######################## BEGIN LICENSE BLOCK ########################
LOW	thirdparty/chardet/gb2312freq.py	21	#
LOW	thirdparty/chardet/mbcsgroupprober.py	1	######################## BEGIN LICENSE BLOCK ########################
LOW	thirdparty/chardet/langgreekmodel.py	1	######################## BEGIN LICENSE BLOCK ########################
LOW	thirdparty/chardet/langgreekmodel.py	21	#
LOW	thirdparty/chardet/eucjpprober.py	1	######################## BEGIN LICENSE BLOCK ########################
LOW	thirdparty/chardet/jisfreq.py	1	######################## BEGIN LICENSE BLOCK ########################
LOW	thirdparty/chardet/jisfreq.py	21	#
LOW	thirdparty/chardet/escsm.py	1	######################## BEGIN LICENSE BLOCK ########################
LOW	thirdparty/chardet/langturkishmodel.py	1	# -- coding: utf-8 --
LOW	thirdparty/chardet/langturkishmodel.py	21	# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
LOW	thirdparty/chardet/sbcharsetprober.py	1	######################## BEGIN LICENSE BLOCK ########################
LOW	thirdparty/chardet/big5freq.py	1	######################## BEGIN LICENSE BLOCK ########################
LOW	thirdparty/chardet/big5freq.py	21	#
LOW	thirdparty/chardet/euckrfreq.py	1	######################## BEGIN LICENSE BLOCK ########################
LOW	thirdparty/chardet/euckrfreq.py	21	#
LOW	thirdparty/chardet/big5prober.py	1	######################## BEGIN LICENSE BLOCK ########################
LOW	thirdparty/chardet/hebrewprober.py	1	######################## BEGIN LICENSE BLOCK ########################
LOW	thirdparty/chardet/hebrewprober.py	21	#
LOW	thirdparty/chardet/hebrewprober.py	41	#
LOW	thirdparty/chardet/hebrewprober.py	61	# and spelled backwards] [first word of first line spelled backwards]
LOW	thirdparty/chardet/hebrewprober.py	81	# Logical Hebrew - "windows-1255" - normal, naturally ordered text.
35 more matches not shown…

Unused Imports60 hits · 60 pts

Severity	File	Line
LOW	sqlmap.py	8
LOW	plugins/generic/custom.py	8
LOW	extra/shutils/newlines.py	3
LOW	extra/shutils/duplicates.py	8
LOW	extra/cloak/cloak.py	10
LOW	extra/dbgtool/dbgtool.py	10
LOW	extra/vulnserver/vulnserver.py	10
LOW	lib/core/patch.py	74
LOW	lib/core/subprocessng.py	8
LOW	lib/core/readlineng.py	10
LOW	lib/core/readlineng.py	14
LOW	lib/core/compat.py	8
LOW	lib/core/option.py	8
LOW	lib/core/option.py	2580
LOW	lib/core/convert.py	38
LOW	lib/core/convert.py	40
LOW	lib/core/threads.py	8
LOW	lib/core/common.py	8
LOW	lib/core/common.py	110
LOW	lib/core/datatype.py	10
LOW	lib/parse/cmdline.py	8
LOW	lib/utils/brute.py	8
LOW	lib/utils/sgmllib.py	13
LOW	lib/utils/hash.py	8
LOW	lib/utils/api.py	9
LOW	lib/utils/progress.py	8
LOW	lib/utils/crawler.py	8
LOW	lib/takeover/metasploit.py	8
LOW	lib/takeover/abstraction.py	8
LOW	lib/controller/controller.py	8
LOW	lib/request/dns.py	8
LOW	lib/request/comparison.py	8
LOW	lib/request/inject.py	8
LOW	lib/techniques/blind/inference.py	8
LOW	lib/techniques/error/use.py	8
LOW	thirdparty/chardet/__init__.py	19
LOW	thirdparty/chardet/__init__.py	19
LOW	thirdparty/chardet/__init__.py	21
LOW	thirdparty/chardet/__init__.py	21
LOW	thirdparty/colorama/__init__.py	2
LOW	thirdparty/colorama/__init__.py	2
LOW	thirdparty/colorama/__init__.py	2
LOW	thirdparty/colorama/__init__.py	2
LOW	thirdparty/colorama/__init__.py	3
LOW	thirdparty/colorama/__init__.py	3
LOW	thirdparty/colorama/__init__.py	3
LOW	thirdparty/colorama/__init__.py	3
LOW	thirdparty/colorama/__init__.py	4
LOW	thirdparty/identywaf/identYwaf.py	11
LOW	thirdparty/beautifulsoup/beautifulsoup.py	79
LOW	thirdparty/beautifulsoup/beautifulsoup.py	80
LOW	thirdparty/beautifulsoup/beautifulsoup.py	1766
LOW	thirdparty/beautifulsoup/beautifulsoup.py	1770
LOW	thirdparty/odict/__init__.py	6
LOW	thirdparty/odict/__init__.py	8
LOW	thirdparty/termcolor/termcolor.py	26
LOW	thirdparty/keepalive/keepalive.py	106
LOW	thirdparty/six/__init__.py	23
LOW	thirdparty/ansistrm/ansistrm.py	8
LOW	thirdparty/bottle/bottle.py	3

Decorative Section Separators17 hits · 51 pts

Severity	File	Line	Snippet
MEDIUM	thirdparty/clientform/clientform.py	48	# -------------------------------------------------
MEDIUM	thirdparty/clientform/clientform.py	1309	#---------------------------------------------------
MEDIUM	thirdparty/clientform/clientform.py	1387	#---------------------------------------------------
MEDIUM	thirdparty/clientform/clientform.py	1407	#---------------------------------------------------
MEDIUM	thirdparty/clientform/clientform.py	1511	#---------------------------------------------------
MEDIUM	thirdparty/clientform/clientform.py	1581	#---------------------------------------------------
MEDIUM	thirdparty/clientform/clientform.py	1616	#---------------------------------------------------
MEDIUM	thirdparty/clientform/clientform.py	2450	#---------------------------------------------------
MEDIUM	thirdparty/clientform/clientform.py	2488	#---------------------------------------------------
MEDIUM	thirdparty/clientform/clientform.py	2766	#---------------------------------------------------
MEDIUM	thirdparty/clientform/clientform.py	2890	#---------------------------------------------------
MEDIUM	thirdparty/clientform/clientform.py	2900	#---------------------------------------------------
MEDIUM	thirdparty/clientform/clientform.py	3008	#---------------------------------------------------
MEDIUM	thirdparty/clientform/clientform.py	3064	#---------------------------------------------------
MEDIUM	thirdparty/clientform/clientform.py	3099	#---------------------------------------------------
MEDIUM	thirdparty/clientform/clientform.py	3188	#---------------------------------------------------
MEDIUM	thirdparty/clientform/clientform.py	3237	#---------------------------------------------------

Cross-Language Confusion6 hits · 28 pts

Severity	File	Line	Snippet
HIGH	plugins/dbms/spanner/syntax.py	17	than chaining multiple CHR() functions with the \|\| operator.
HIGH	lib/core/target.py	162	conf.data = re.sub(r'("(?P<name>[^"]+)"\s:\s)((true\|false\|null))\b', functools.partial(process, re
HIGH	thirdparty/identywaf/identYwaf.py	68	\| T \| \ / [_ \| _ Yl_j l_j`\| ~ \|`\| \| \| \|Y o \|\| l_
HIGH	thirdparty/bottle/bottle.py	1137	default_app.push(self)
HIGH	thirdparty/bottle/bottle.py	2621	return self.push()
HIGH	thirdparty/bottle/bottle.py	3873	tmp = default_app.push() # Create a new "default application"

Self-Referential Comments9 hits · 26 pts

Severity	File	Line	Snippet
MEDIUM	extra/icmpsh/icmpsh_m.py	66	# Create a new IP packet and set its source and destination addresses
MEDIUM	extra/icmpsh/icmpsh_m.py	71	# Create a new ICMP packet of type ECHO REPLY
MEDIUM	lib/core/option.py	1320	# Create a custom boundary object for user's supplied prefix
MEDIUM	lib/utils/gui.py	208	# Create a frame for the console
MEDIUM	lib/utils/gui.py	236	# Create a menu bar
MEDIUM	lib/utils/gui.py	287	# Create a frame with scrollbar for the tab
MEDIUM	lib/utils/gui.py	291	# Create a canvas with scrollbar
MEDIUM	thirdparty/pydes/pyDes.py	459	# Create the 16 subkeys, K[1] - K[16]
MEDIUM	thirdparty/bottle/bottle.py	3873	tmp = default_app.push() # Create a new "default application"

Redundant / Tautological Comments13 hits · 22 pts

Severity	File	Line	Snippet
LOW	plugins/dbms/mysql/fingerprint.py	240	# Check if it is MySQL >= 5.7
LOW	plugins/dbms/mysql/fingerprint.py	244	# Check if it is MySQL >= 5.6
LOW	plugins/dbms/mysql/fingerprint.py	248	# Check if it is MySQL >= 5.5
LOW	plugins/dbms/mysql/fingerprint.py	252	# Check if it is MySQL >= 5.1.2 and < 5.5.0
LOW	plugins/dbms/mysql/fingerprint.py	265	# Check if it is MySQL >= 5.0.0 and < 5.1.2
LOW	lib/core/common.py	2647	# Check if the common output (item) starts with prevValue
LOW	lib/core/settings.py	268	# Check if running in terminal
LOW	lib/utils/tui.py	106	# Check if tab exceeds width, wrap to next line
LOW	lib/utils/tui.py	127	# Check if tab exceeds width, wrap to next line
LOW	lib/utils/tui.py	641	# Check if process ended
LOW	lib/utils/tui.py	755	# Check if ncurses is available
LOW	thirdparty/chardet/charsetprober.py	122	# Check if we're coming out of or entering an HTML tag
LOW	thirdparty/socks/socks.py	308	# Check if the destination address provided is an IP address

Hyper-Verbose Identifiers9 hits · 9 pts

Severity	File	Line	Snippet
LOW	lib/parse/cmdline.py	899	def _format_action_invocation(self, action):
LOW	thirdparty/chardet/charsetprober.py	67	def filter_international_words(buf):
LOW	thirdparty/chardet/charsetprober.py	104	def filter_with_english_letters(buf):
LOW	thirdparty/clientform/clientform.py	859	def unescape_attr_if_required(self, name):
LOW	thirdparty/clientform/clientform.py	861	def unescape_attrs_if_required(self, attrs):
LOW	thirdparty/clientform/clientform.py	864	def unescape_attr_if_required(self, name):
LOW	thirdparty/clientform/clientform.py	866	def unescape_attrs_if_required(self, attrs):
LOW	thirdparty/clientform/clientform.py	836	def unescape_attr_if_required(self, name):
LOW	thirdparty/clientform/clientform.py	838	def unescape_attrs_if_required(self, attrs):

AI Slop Vocabulary1 hit · 3 pts

Severity	File	Line	Snippet
MEDIUM	thirdparty/beautifulsoup/beautifulsoup.py	1456	# haven't already gone through a supposedly comprehensive

Fake / Example Data2 hits · 0 pts

Severity	File	Line	Snippet
LOW	lib/core/common.py	3241	>>> findDynamicContent("Lorem ipsum dolor sit amet, congue tation referrentur ei sed. Ne nec legimus habemus recusab
LOW	lib/core/common.py	3241	>>> findDynamicContent("Lorem ipsum dolor sit amet, congue tation referrentur ei sed. Ne nec legimus habemus recusab

Slop Phrases1 hit · 0 pts

Severity	File	Line	Snippet
LOW	thirdparty/clientform/clientform.py	348	Warning: don't forget to call lastpart()!

Score History

Severity Breakdown

Pattern Findings