garfield/wpscan
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Improves detection of WP Version, Plugins etc by checking 404

Browse Source
This commit is contained in:
erwanlr
2019-10-31 19:56:05 +00:00
parent 85aa9f61cd
commit 6b5e016770
44 changed files with 456 additions and 146 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
app/finders/wp_items/urls_in_homepage.rb → app/finders/wp_items/urls_in_page.rb
View File

@@ -4,7 +4,7 @@ module WPScan
module Finders
module WpItems
# URLs In Homepage Module to use in plugins & themes finders
module URLsInHomepage
module UrlsInPage
# @param [ String ] type plugins / themes
# @param [ Boolean ] uniq Wether or not to apply the #uniq on the results
#
@@ -12,7 +12,7 @@ module WPScan
def items_from_links(type, uniq = true)
found = []
target.in_scope_uris(target.homepage_res) do |uri|
target.in_scope_uris(page_res) do |uri|
next unless uri.to_s =~ item_attribute_pattern(type)
slug = Regexp.last_match[1]&.strip
@@ -30,7 +30,7 @@ module WPScan
def items_from_codes(type, uniq = true)
found = []
target.homepage_res.html.xpath('//script[not(@src)]|//style[not(@src)]').each do |tag|
page_res.html.xpath('//script[not(@src)]|//style[not(@src)]').each do |tag|
code = tag.text.to_s
next if code.empty?