garfield/wpscan
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Fixes #1599

Browse Source
This commit is contained in:
erwanlr
2021-01-29 13:34:39 +01:00
parent fa3005f2b7
commit 11f35d86ff
3 changed files with 27 additions and 11 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
app/finders/db_exports/known_locations.rb
View File

@@ -7,7 +7,7 @@ module WPScan
class KnownLocations < CMSScanner::Finders::Finder class KnownLocations < CMSScanner::Finders::Finder
include CMSScanner::Finders::Finder::Enumerator include CMSScanner::Finders::Finder::Enumerator
SQL_PATTERN = /(?:DROP|(?:UN)?LOCK|CREATE) TABLE|INSERT INTO/.freeze SQL_PATTERN = /(?:DROP|(?:UN)?LOCK|CREATE|ALTER) (?:TABLE|DATABASE)|INSERT INTO/.freeze
# @param [ Hash ] opts # @param [ Hash ] opts
# @option opts [ String ] :list # @option opts [ String ] :list

30
spec/app/finders/db_exports/known_locations_spec.rb
View File

@@ -102,19 +102,29 @@ describe WPScan::Finders::DbExports::KnownLocations do
expect(target).to receive(:homepage_or_404?).twice.and_return(false) expect(target).to receive(:homepage_or_404?).twice.and_return(false)
end end
it 'returns the expected Array<DbExport>' do context 'when matching the pattern' do
expected = [] it 'returns the expected Array<DbExport>' do
expected = []
found_files.each do |file| found_files.each do |file|
url = "#{target.url}#{file}" url = "#{target.url}#{file}"
expected << WPScan::Model::DbExport.new( expected << WPScan::Model::DbExport.new(
url, url,
confidence: 100, confidence: 100,
found_by: described_class::DIRECT_ACCESS found_by: described_class::DIRECT_ACCESS
) )
end
expect(finder.aggressive(opts)).to eql expected
end end
end
expect(finder.aggressive(opts)).to eql expected context 'when not matching the pattern' do
let(:db_export) { '' }
it 'returns an empty array' do
expect(finder.aggressive(opts)).to eql []
end
end end
end end
end end

6
spec/fixtures/finders/db_exports/dump.sql vendored
View File

@@ -35,3 +35,9 @@ LOCK TABLES `wp_comments` WRITE;
INSERT INTO `wp_comments` VALUES (1,1,'A WordPress Commenter','wapuu@wordpress.example','https://wordpress.org/','','2017-02-17 18:22:27','2017-02-17 18:22:27','Hi, this is a comment.\nTo get started with moderating, editing, and deleting comments, please visit the Comments screen in the dashboard.\nCommenter avatars come from <a href=\"https://gravatar.com\">Gravatar</a>.',0,'1','','',0,0); INSERT INTO `wp_comments` VALUES (1,1,'A WordPress Commenter','wapuu@wordpress.example','https://wordpress.org/','','2017-02-17 18:22:27','2017-02-17 18:22:27','Hi, this is a comment.\nTo get started with moderating, editing, and deleting comments, please visit the Comments screen in the dashboard.\nCommenter avatars come from <a href=\"https://gravatar.com\">Gravatar</a>.',0,'1','','',0,0);
/*!40000 ALTER TABLE `wp_comments` ENABLE KEYS */; /*!40000 ALTER TABLE `wp_comments` ENABLE KEYS */;
UNLOCK TABLES; UNLOCK TABLES;
CREATE DATABASE Sales;
ALTER DATABASE Test1
ADD FILEGROUP Test1FG1;
GO