Update mysql.go

Added a loop for databases to prevent certain non-existing mysql databases from being assumed not to have weak passwords
2025-07-13 21:02:44 +08:00 · 2025-02-07 19:14:07 +08:00 · 2025-02-07 19:14:07 +08:00 · cc9d292bdd
commit cc9d292bdd
parent b8a591920b
1 changed files with 15 additions and 11 deletions
--- a/Plugins/mysql.go
+++ b/Plugins/mysql.go
@ -39,19 +39,23 @@ func MysqlScan(info *common.HostInfo) (tmperr error) {
 func MysqlConn(info *common.HostInfo, user string, pass string) (flag bool, err error) {
 	flag = false
 	Host, Port, Username, Password := info.Host, info.Ports, user, pass
-	dataSourceName := fmt.Sprintf("%v:%v@tcp(%v:%v)/mysql?charset=utf8&timeout=%v", Username, Password, Host, Port, time.Duration(common.Timeout)*time.Second)
-	db, err := sql.Open("mysql", dataSourceName)
-	if err == nil {
-		db.SetConnMaxLifetime(time.Duration(common.Timeout) * time.Second)
-		db.SetConnMaxIdleTime(time.Duration(common.Timeout) * time.Second)
-		db.SetMaxIdleConns(0)
-		defer db.Close()
-		err = db.Ping()
+	for _, database := range []string{"mysql", "information_schema"} {
+		dsn := fmt.Sprintf("%v:%v@tcp(%v:%v)/%v?charset=utf8&timeout=%v", Username, Password, Host, Port, database, time.Duration(common.Timeout)*time.Second)
+		db, err := sql.Open("mysql", dsn)
 		if err == nil {
-			result := fmt.Sprintf("[+] mysql %v:%v:%v %v", Host, Port, Username, Password)
-			common.LogSuccess(result)
-			flag = true
+			db.SetConnMaxLifetime(time.Duration(common.Timeout) * time.Second)
+			db.SetConnMaxIdleTime(time.Duration(common.Timeout) * time.Second)
+			db.SetMaxIdleConns(0)
+			err = db.Ping()
+			if err == nil {
+				result := fmt.Sprintf("[+] mysql %v:%v:%v %v", Host, Port, Username, Password)
+				common.LogSuccess(result)
+				flag = true
+				_ = db.Close()
+				break
+			}
 		}
+		_ = db.Close()
 	}
 	return flag, err
 }