garfield/wpscan
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Ref #1285 - Adds comment about the pagination

Browse Source
This commit is contained in:
erwanlr
2019-02-10 10:49:03 +00:00
parent dee4da1c0e
commit 06f82d78f4
1 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
app/finders/users/wp_json_api.rb
View File

@@ -4,6 +4,7 @@ module WPScan
# WP JSON API # WP JSON API
# #
# Since 4.7 - Need more investigation as it seems WP 4.7.1 reduces the exposure, see https://github.com/wpscanteam/wpscan/issues/1038) # Since 4.7 - Need more investigation as it seems WP 4.7.1 reduces the exposure, see https://github.com/wpscanteam/wpscan/issues/1038)
# For the pagination, see https://github.com/wpscanteam/wpscan/issues/1285
# #
class WpJsonApi < CMSScanner::Finders::Finder class WpJsonApi < CMSScanner::Finders::Finder
MAX_PER_PAGE = 100 # See https://developer.wordpress.org/rest-api/using-the-rest-api/pagination/ MAX_PER_PAGE = 100 # See https://developer.wordpress.org/rest-api/using-the-rest-api/pagination/
@@ -18,8 +19,7 @@ module WPScan
loop do loop do
current_page += 1 current_page += 1
res = Typhoeus.get(api_url, res = Typhoeus.get(api_url, params: { per_page: MAX_PER_PAGE, page: current_page })
params: { per_page: MAX_PER_PAGE, page: current_page })
total_pages ||= res.headers['X-WP-TotalPages'].to_i total_pages ||= res.headers['X-WP-TotalPages'].to_i