garfield/wpscan
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Fixed broken link checker, fixed some broken links

Browse Source
This commit is contained in:
ethicalhack3r
2014-03-28 19:06:29 +01:00
parent fd3c4261de
commit 7053a1e42a
3 changed files with 6 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
data/plugin_vulns.xml
View File

@@ -1833,7 +1833,6 @@
<title>Wp-ImageZoom - zoom.php id Parameter SQL Injection</title> <title>Wp-ImageZoom - zoom.php id Parameter SQL Injection</title>
<references> <references>
<osvdb>87870</osvdb> <osvdb>87870</osvdb>
<url>http://packetstormsecurity.com/files/118371/</url>
<url>http://www.securityfocus.com/bid/56691</url> <url>http://www.securityfocus.com/bid/56691</url>
<url>http://xforce.iss.net/xforce/xfdb/80285</url> <url>http://xforce.iss.net/xforce/xfdb/80285</url>
</references> </references>
@@ -2451,7 +2450,7 @@
<title>WP Easy Gallery &lt;= 2.7 - CSRF</title> <title>WP Easy Gallery &lt;= 2.7 - CSRF</title>
<references> <references>
<secunia>49190</secunia> <secunia>49190</secunia>
<url>http://plugins.trac.wordpress.org/changeset?reponame=&amp;old=669527%40wp-easy-gallery&amp;new=669527%40wp-easy-gallery</url> <url>https://plugins.trac.wordpress.org/changeset?reponame=&amp;old=669527@wp-easy-gallery&amp;new=669527@wp-easy-gallery</url>
</references> </references>
<type>CSRF</type> <type>CSRF</type>
<fixed_in>2.7.3</fixed_in> <fixed_in>2.7.3</fixed_in>
@@ -7892,7 +7891,7 @@
<vulnerability> <vulnerability>
<title>Social Media Widget - malicious code</title> <title>Social Media Widget - malicious code</title>
<references> <references>
<url>http://plugins.trac.wordpress.org/changeset?reponame=&amp;old=691839%40social-media-widget%2Ftrunk&amp;new=693941%40social-media-widget%2Ftrunk</url> <url>https://plugins.trac.wordpress.org/changeset?reponame=&amp;old=691839@social-media-widget/trunk&amp;new=693941@social-media-widget/trunk</url>
<url>http://slashdot.org/submission/2592777/top-wordpress-widget-sold-off-turned-into-seo-spambot</url> <url>http://slashdot.org/submission/2592777/top-wordpress-widget-sold-off-turned-into-seo-spambot</url>
</references> </references>
<type>UNKNOWN</type> <type>UNKNOWN</type>
@@ -8721,7 +8720,6 @@
<vulnerability> <vulnerability>
<title>SexyBookmarks - Setting Manipulation CSRF</title> <title>SexyBookmarks - Setting Manipulation CSRF</title>
<references> <references>
<url>http://wordpress.org/plugins/sexybookmarks/changelog/</url>
<osvdb>95908</osvdb> <osvdb>95908</osvdb>
<cve>2013-3256</cve> <cve>2013-3256</cve>
<secunia>53138</secunia> <secunia>53138</secunia>

2
data/theme_vulns.xml
View File

@@ -1947,7 +1947,7 @@
<vulnerability> <vulnerability>
<title>Xss In wordpress ambience theme</title> <title>Xss In wordpress ambience theme</title>
<references> <references>
<url>http://packetstorm.igor.onlinedirect.bg/1306-exploits/wpambience-xss.txt</url> <url>http://www.websecuritywatch.com/wordpress-ambience-xss/</url>
</references> </references>
<type>XSS</type> <type>XSS</type>
</vulnerability> </vulnerability>

4
lib/wpstools/plugins/checker/checker_plugin.rb
View File

@@ -32,10 +32,12 @@ class CheckerPlugin < Plugin
xml = xml(vuln_ref_file) xml = xml(vuln_ref_file)
urls = [] urls = []
xml.xpath('//reference').each { |node| urls << node.text } xml.xpath('//references/url').each { |node| urls << node.text }
urls.uniq! urls.uniq!
puts "[!] No URLs found in #{vuln_ref_file}!" if urls.empty?
dead_urls = [] dead_urls = []
queue_count = 0 queue_count = 0
request_count = 0 request_count = 0