diff --git a/security/sqlmap/Makefile b/security/sqlmap/Makefile
index b22c8675730e..5ce8ab82c277 100644
--- a/security/sqlmap/Makefile
+++ b/security/sqlmap/Makefile
@@ -1,29 +1,32 @@
 PORTNAME=	sqlmap
-PORTVERSION=	1.8
+PORTVERSION=	1.9.12
 CATEGORIES=	security python
 MASTER_SITES=	PYPI
 PKGNAMEPREFIX=	${PYTHON_PKGNAMEPREFIX}
 
 MAINTAINER=	rm@FreeBSD.org
 COMMENT=	Automatic SQL injection tool
 WWW=		https://sqlmap.org/
 
 LICENSE=	GPLv2
 LICENSE_FILE=	${WRKSRC}/sqlmap/LICENSE
 
 BUILD_DEPENDS=	${PYTHON_PKGNAMEPREFIX}setuptools>=0:devel/py-setuptools@${PY_FLAVOR} \
 		${PYTHON_PKGNAMEPREFIX}wheel>=0:devel/py-wheel@${PY_FLAVOR}
 RUN_DEPENDS=	${PYTHON_PKGNAMEPREFIX}sqlite3>0:databases/py-sqlite3@${PY_FLAVOR}
 
 USES=		python shebangfix
 USE_PYTHON=	autoplist pep517
 
-SHEBANG_FILES=	*.py sqlmap/extra/shutils/*.sh sqlmap/extra/shutils/*.py
+SHEBANG_FILES=	*.py sqlmap/extra/shutils/*.sh sqlmap/extra/shutils/*.py \
+		sqlmap/plugins/dbms/clickhouse/*.py \
+		sqlmap/thirdparty/identywaf/identYwaf.py
+
 NO_ARCH=	yes
 
 OPTIONS_DEFINE=	MSF
 MSF_DESC=	Enable Metasploit Framework integration
 
 MSF_RUN_DEPENDS=	msfcli:security/metasploit
 
 .include <bsd.port.mk>
diff --git a/security/sqlmap/distinfo b/security/sqlmap/distinfo
index 396332c41449..ea6d5a319c34 100644
--- a/security/sqlmap/distinfo
+++ b/security/sqlmap/distinfo
@@ -1,3 +1,3 @@
-TIMESTAMP = 1716077230
-SHA256 (sqlmap-1.8.tar.gz) = 8dbb204ee36e57c123ff50f042345174dfd262f3ed0a044ed8d7251379472ba1
-SIZE (sqlmap-1.8.tar.gz) = 7208171
+TIMESTAMP = 1766217194
+SHA256 (sqlmap-1.9.12.tar.gz) = 0b3f37ccb8c6aaf0e3c15166322e001c1f0961bc601e44272875d5c32c44a757
+SIZE (sqlmap-1.9.12.tar.gz) = 7216017