From 4d852b5983505028e04f611d6cc019a2095e27ed Mon Sep 17 00:00:00 2001
From: Christian Mehlmauer <firefart@gmail.com>
Date: Thu, 13 Dec 2012 11:41:08 +0100
Subject: [PATCH] Detect XML Pingback URL

---
 lib/wpscan/wp_target.rb | 17 +++++++++++++++++
 wpscan.rb               |  4 ++++
 2 files changed, 21 insertions(+)

diff --git a/lib/wpscan/wp_target.rb b/lib/wpscan/wp_target.rb
index 214e6c74..baaf41dd 100644
--- a/lib/wpscan/wp_target.rb
+++ b/lib/wpscan/wp_target.rb
@@ -178,4 +178,21 @@ class WpTarget
     end
     @multisite
   end
+
+  def xml_rpc_url
+    unless @xmlrpc_url
+      headers = Browser.instance.get(@uri).headers_hash
+      value = headers["x-pingback"]
+      if value.nil? or value.empty?
+        @xmlrpc_url = "nope"
+      else
+        @xmlrpc_url = value
+      end
+    end
+    @xmlrpc_url
+  end
+
+  def xml_rpc_enabled
+    xml_rpc_url != "nope"
+  end
 end
diff --git a/wpscan.rb b/wpscan.rb
index 02743689..ddb516a4 100755
--- a/wpscan.rb
+++ b/wpscan.rb
@@ -144,6 +144,10 @@ begin
     puts green("[+]") + " User registration is enabled"
   end
 
+  if wp_target.xml_rpc_enabled
+    puts green("[+]") + " XML-RPC Interface available under #{wp_target.xml_rpc_url}"
+  end
+
   if wp_target.has_malwares?
     malwares = wp_target.malwares
     puts red("[!]") + " #{malwares.size} malware(s) found :"