garfield/wpscan
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

-) Check if userregistration is enabled

Browse Source 
-) Check if blog is a multisite
This commit is contained in:
Christian Mehlmauer
2012-09-24 20:46:26 +02:00
parent fe1191a51e
commit 2e4a622cec
3 changed files with 73 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
wpscan.rb
View File

@@ -101,11 +101,11 @@ begin
wp_theme = wp_target.theme
if wp_theme
# Theme version is handled in wp_item.to_s
puts green("[!]") + " The WordPress theme in use is #{wp_theme}"
puts green("[+]") + " The WordPress theme in use is #{wp_theme}"
theme_vulnerabilities = wp_theme.vulnerabilities
unless theme_vulnerabilities.empty?
puts red("[+]") + " We have identified #{theme_vulnerabilities.size} vulnerabilities for this theme :"
puts red("[!]") + " We have identified #{theme_vulnerabilities.size} vulnerabilities for this theme :"
theme_vulnerabilities.each do |vulnerability|
puts
puts " | " + red("* Title: #{vulnerability.title}")
@@ -135,6 +135,14 @@ begin
puts red("[!] searchreplacedb2.php has been found '#{wp_target.search_replace_db_2_url}'")
end
if wp_target.is_multisite?
puts green("[+]") + " This site seems to be a multisite (http://codex.wordpress.org/Glossary#Multisite)"
end
if wp_target.registration_enabled?
puts green("[+]") + " Userregistration is enabled"
end
if wp_target.has_malwares?
malwares = wp_target.malwares
puts red("[!]") + " #{malwares.size} malware(s) found :"