garfield/wpscan
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Detect XML Pingback URL

Browse Source
This commit is contained in:
Christian Mehlmauer
2012-12-13 11:41:08 +01:00
parent 19bcc9263c
commit 4d852b5983
2 changed files with 21 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

17
lib/wpscan/wp_target.rb
View File

@@ -178,4 +178,21 @@ class WpTarget
end end
@multisite @multisite
end end
def xml_rpc_url
unless @xmlrpc_url
headers = Browser.instance.get(@uri).headers_hash
value = headers["x-pingback"]
if value.nil? or value.empty?
@xmlrpc_url = "nope"
else
@xmlrpc_url = value
end
end
@xmlrpc_url
end
def xml_rpc_enabled
xml_rpc_url != "nope"
end
end end

4
wpscan.rb
View File

@@ -144,6 +144,10 @@ begin
puts green("[+]") + " User registration is enabled" puts green("[+]") + " User registration is enabled"
end end
if wp_target.xml_rpc_enabled
puts green("[+]") + " XML-RPC Interface available under #{wp_target.xml_rpc_url}"
end
if wp_target.has_malwares? if wp_target.has_malwares?
malwares = wp_target.malwares malwares = wp_target.malwares
puts red("[!]") + " #{malwares.size} malware(s) found :" puts red("[!]") + " #{malwares.size} malware(s) found :"