diff --git a/lib/common/collections/wp_users/output.rb b/lib/common/collections/wp_users/output.rb index c7000dbb..b6516c1a 100644 --- a/lib/common/collections/wp_users/output.rb +++ b/lib/common/collections/wp_users/output.rb @@ -9,7 +9,7 @@ class WpUsers < WpItems # @return [ void ] def output(options = {}) rows = [] - headings = ['Id', 'Login', 'Name'] + headings = ['ID', 'Login', 'Name'] headings << 'Password' if options[:show_password] remove_junk_from_display_names diff --git a/lib/common/db_updater.rb b/lib/common/db_updater.rb index c2e1a5eb..0ad64860 100644 --- a/lib/common/db_updater.rb +++ b/lib/common/db_updater.rb @@ -88,7 +88,7 @@ class DbUpdater def update(verbose = false) FILES.each do |filename| begin - puts "[+] Checking #{filename}" if verbose + puts "[+] Checking: #{filename}" if verbose db_checksum = remote_file_checksum(filename) # Checking if the file needs to be updated diff --git a/wpscan.rb b/wpscan.rb index 13718a1d..3c480d54 100755 --- a/wpscan.rb +++ b/wpscan.rb @@ -116,10 +116,9 @@ def main # Check for data.zip if has_db_zip? # User prompt - print '[?] Use the latest on-line database? Or use the off-line version? [O]n-line O[f]f-line [A]bort, default: [O] > ' + print '[?] Use the latest on-line database? Or use the off-line copy? [O]n-line O[f]f-line [A]bort update, default: [O] > ' if (input = Readline.readline) =~ /^a/i - puts 'Scan aborted' - exit(1) + puts 'Update aborted' elsif input =~ /^f/i online_update = false end @@ -310,9 +309,11 @@ def main spacer() end + # Test to see if MAIN API URL gives anything back if wp_target.has_api?(wp_target.json_url) puts info("API exposed: #{wp_target.json_url}") + # Test to see if USER API URL gives anything back if wp_target.has_api?(wp_target.json_users_url) puts warning("Users exposed via API: #{wp_target.json_users_url}")