garfield/wpscan
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Misc fixes

Browse Source
This commit is contained in:
g0tmi1k
2018-05-15 09:05:58 +01:00
parent 44557797b0
commit 439900a1ea
3 changed files with 15 additions and 12 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
lib/wpscan/wp_target/wp_api.rb
View File

@@ -68,10 +68,10 @@ class WpTarget < WebSite
users << row users << row
end end
if users # Sort and uniq
# Sort and uniq users = users.sort.uniq
users = users.sort.uniq
if users and users.size > 1
# Feedback # Feedback
grammar = grammar_s(users.size) grammar = grammar_s(users.size)
puts warning("#{users.size} user#{grammar} exposed via API: #{json_users_url}") puts warning("#{users.size} user#{grammar} exposed via API: #{json_users_url}")

17
lib/wpscan/wp_target/wp_rss.rb
View File

@@ -36,16 +36,19 @@ class WpTarget < WebSite
# Read in RSS/XML # Read in RSS/XML
xml = Nokogiri::XML(data) xml = Nokogiri::XML(data)
# Look for <dc:creator> item begin
xml.xpath('//item/dc:creator').each do |node| # Look for <dc:creator> item
#Format: <dc:creator><![CDATA[.*]]></dc:creator> xml.xpath('//item/dc:creator').each do |node|
users << [%r{.*}i.match(node).to_s] #Format: <dc:creator><![CDATA[.*]]></dc:creator>
users << [%r{.*}i.match(node).to_s]
end
rescue
end end
if users # Sort and uniq
# Sort and uniq users = users.sort_by { |user| user.to_s.downcase }.uniq
users = users.sort_by { |user| user.to_s.downcase }.uniq
if users and users.size > 1
# Feedback # Feedback
grammar = grammar_s(users.size) grammar = grammar_s(users.size)
puts warning("Detected #{users.size} user#{grammar} from RSS feed:") puts warning("Detected #{users.size} user#{grammar} from RSS feed:")

4
wpscan.rb
View File

@@ -262,7 +262,7 @@ def main
if code == 200 if code == 200
puts info("humans.txt available under: #{wp_target.humans_url} [HTTP #{code}]") puts info("humans.txt available under: #{wp_target.humans_url} [HTTP #{code}]")
wp_target.parse_txt(humans_url).each do |dir| parse_txt(wp_target.humans_url).each do |dir|
puts info("Entry from humans.txt: #{dir}") puts info("Entry from humans.txt: #{dir}")
end end
spacer() spacer()
@@ -272,7 +272,7 @@ def main
if code == 200 if code == 200
puts info("security.txt available under: #{wp_target.security_url} [HTTP #{code}]") puts info("security.txt available under: #{wp_target.security_url} [HTTP #{code}]")
wp_target.parse_txt(security_url).each do |dir| parse_txt(wp_target.security_url).each do |dir|
puts info("Entry from security.txt: #{dir}") puts info("Entry from security.txt: #{dir}")
end end
spacer() spacer()