garfield/wpscan
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Adds detection of Plugin/Theme via errors 500 and custom 401/403 - Fixes #1090

Browse Source
This commit is contained in:
erwanlr
2019-04-03 08:22:31 +01:00
parent 02cdee2776
commit 49efbf25ea
2 changed files with 4 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
app/finders/plugins/known_locations.rb
View File

@@ -9,7 +9,7 @@ module WPScan
# @return [ Array<Integer> ]
def valid_response_codes
@valid_response_codes ||= [200, 401, 403, 301]
@valid_response_codes ||= [200, 401, 403, 301, 500].freeze
end
# @param [ Hash ] opts
@@ -19,7 +19,7 @@ module WPScan
def aggressive(opts = {})
found = []
enumerate(target_urls(opts), opts.merge(check_full_response: 200)) do |_res, slug|
enumerate(target_urls(opts), opts.merge(check_full_response: [200, 401, 403, 500])) do |_res, slug|
found << Model::Plugin.new(slug, target, opts.merge(found_by: found_by, confidence: 80))
end

4
app/finders/themes/known_locations.rb
View File

@@ -9,7 +9,7 @@ module WPScan
# @return [ Array<Integer> ]
def valid_response_codes
@valid_response_codes ||= [200, 401, 403, 301]
@valid_response_codes ||= [200, 401, 403, 301, 500].freeze
end
# @param [ Hash ] opts
@@ -19,7 +19,7 @@ module WPScan
def aggressive(opts = {})
found = []
enumerate(target_urls(opts), opts.merge(check_full_response: 200)) do |_res, slug|
enumerate(target_urls(opts), opts.merge(check_full_response: [200, 401, 403, 500])) do |_res, slug|
found << Model::Theme.new(slug, target, opts.merge(found_by: found_by, confidence: 80))
end