From bbe5a271d262557520b9128ea85fc20b925e2a51 Mon Sep 17 00:00:00 2001
From: shack2 <shack2@DESKTOP-R74F2PD>
Date: Sun, 9 Feb 2020 18:12:44 +0800
Subject: [PATCH] 20200209
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

bug修复
---
 SuperSQLInjection/Main.cs                    | 3 +--
 SuperSQLInjection/Properties/AssemblyInfo.cs | 6 +++---
 SuperSQLInjection/payload/MySQL.cs           | 4 ++--
 SuperSQLInjection/tools/http/HTTP.cs         | 1 -
 4 files changed, 6 insertions(+), 8 deletions(-)

diff --git a/SuperSQLInjection/Main.cs b/SuperSQLInjection/Main.cs
index f035af3..2abf957 100644
--- a/SuperSQLInjection/Main.cs
+++ b/SuperSQLInjection/Main.cs
@@ -286,7 +286,7 @@ public void HttpDownloadFile(string url, string path)
             responseStream.Close();
         }
 
-        public static int version = 20191212;
+        public static int version = 20200209;
         public static string versionURL = "http://www.shack2.org/soft/getNewVersion?ENNAME=SSuperSQLInjection&NO=" + URLEncode.UrlEncode(Tools.getSystemSid()) + "&VERSION=" + version;
         //检查更新
         public void checkUpdate()
@@ -2706,7 +2706,6 @@ public int getValue(String payLoadStr, int start, int end)
         {
             int mid = 0;
             String payload = "";
-            Boolean lastexists = false;
             while (start <= end)
             {
                 //2分法获取中间数字
diff --git a/SuperSQLInjection/Properties/AssemblyInfo.cs b/SuperSQLInjection/Properties/AssemblyInfo.cs
index 5c27122..f47fa82 100644
--- a/SuperSQLInjection/Properties/AssemblyInfo.cs
+++ b/SuperSQLInjection/Properties/AssemblyInfo.cs
@@ -10,7 +10,7 @@
 [assembly: AssemblyConfiguration("")]
 [assembly: AssemblyCompany("www.shack2.org")]
 [assembly: AssemblyProduct("超级SQL注入工具")]
-[assembly: AssemblyCopyright("Copyright ©  2014-2019")]
+[assembly: AssemblyCopyright("Copyright ©  2014-2020")]
 [assembly: AssemblyTrademark("")]
 [assembly: AssemblyCulture("")]
 
@@ -32,5 +32,5 @@
 // 可以指定所有这些值，也可以使用“内部版本号”和“修订号”的默认值，
 // 方法是按如下所示使用“*”:
 // [assembly: AssemblyVersion("1.0.*")]
-[assembly: AssemblyVersion("1.2019.12.12")]
-[assembly: AssemblyFileVersion("1.2019.12.12")]
+[assembly: AssemblyVersion("1.2020.02.09")]
+[assembly: AssemblyFileVersion("1.2020.02.09")]
diff --git a/SuperSQLInjection/payload/MySQL.cs b/SuperSQLInjection/payload/MySQL.cs
index 00a65d0..07384c7 100644
--- a/SuperSQLInjection/payload/MySQL.cs
+++ b/SuperSQLInjection/payload/MySQL.cs
@@ -260,7 +260,7 @@ public static String creatMySQLColumnsStr(List<String> columns, String table, St
         /// <returns></returns>
         public static String concatMySQLColumnStr(List<String> columns)
         {
-            StringBuilder sb = new StringBuilder("concat(0x5e5e21,concat_ws("+ Comm.COLUMNS_SPLIT_HEX_STR + ",");
+            StringBuilder sb = new StringBuilder("concat(0x5e5e21,convert(concat_ws("+ Comm.COLUMNS_SPLIT_HEX_STR + ",");
             for (int i = 0; i < columns.Count; i++)
             {
                 if (columns.Count > 1)
@@ -278,7 +278,7 @@ public static String concatMySQLColumnStr(List<String> columns)
             {
                 sb.Remove(sb.Length - 1, 1);
             }
-            sb.Append("),0x215e5e)");
+            sb.Append(") using UTF8),0x215e5e)");
 
             return sb.ToString();
 
diff --git a/SuperSQLInjection/tools/http/HTTP.cs b/SuperSQLInjection/tools/http/HTTP.cs
index 501b852..afbb5cc 100644
--- a/SuperSQLInjection/tools/http/HTTP.cs
+++ b/SuperSQLInjection/tools/http/HTTP.cs
@@ -68,7 +68,6 @@ public static Boolean findRetryKey(String body) {
                     if (!String.IsNullOrEmpty(key)&&body.IndexOf(key) != -1)
                     {
                         return true;
-                        break;
                     }
                 }
             }