garfield/wpscan
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

output total number of plugins and themes

Browse Source
This commit is contained in:
Christian Mehlmauer
2013-02-08 00:13:27 +01:00
parent a8a556464b
commit a07d55f1ab
7 changed files with 45 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
lib/wpscan/modules/wp_plugins.rb
View File

@@ -69,4 +69,10 @@ module WpPlugins
plugins.sort_by { |p| p.name } plugins.sort_by { |p| p.name }
end end
def plugin_vulns_count(file=PLUGINS_VULNS_FILE)
xml = Nokogiri::XML(File.open(file)) do |config|
config.noblanks
end
xml.xpath("count(//plugin)").to_i
end
end end

6
lib/wpscan/modules/wp_themes.rb
View File

@@ -56,4 +56,10 @@ module WpThemes
themes.sort_by { |t| t.name } themes.sort_by { |t| t.name }
end end
def theme_vulns_count(file=THEMES_VULNS_FILE)
xml = Nokogiri::XML(File.open(file)) do |config|
config.noblanks
end
xml.xpath("count(//theme)").to_i
end
end end

6
spec/lib/wpscan/modules/wp_plugins_spec.rb
View File

@@ -192,6 +192,12 @@ shared_examples_for 'WpPlugins' do
@expected_plugins = [plugins[1]] @expected_plugins = [plugins[1]]
end end
end
describe '#plugin_vulns_count' do
it 'should return the correct number' do
xml = "#{SPEC_FIXTURES_WPSCAN_WP_PLUGIN_DIR}/vulnerabilities/plugin_vulns.xml"
@module.plugin_vulns_count(xml).should === 2
end
end end
end end

7
spec/lib/wpscan/modules/wp_themes_spec.rb
View File

@@ -207,4 +207,11 @@ shared_examples_for 'WpThemes' do
end end
end end
end end
describe '#theme_vulns_count' do
it 'should return the correct number' do
xml = "#{SPEC_FIXTURES_WPSCAN_WP_THEME_DIR}/vulnerabilities/theme_vulns.xml"
@module.theme_vulns_count(xml).should === 2
end
end
end end

1
spec/lib/wpscan/wp_theme_spec.rb
View File

@@ -285,4 +285,5 @@ describe WpTheme do
(instance === instance2).should == true (instance === instance2).should == true
end end
end end
end end

17
spec/samples/wpscan/wp_theme/vulnerabilities/theme_vulns.xml Normal file
View File

@@ -0,0 +1,17 @@
<?xml version="1.0" encoding="UTF-8"?>
<vulnerabilities>
<theme name="onepagewebsite">
<vulnerability>
<title>onepagewebsite Full Path Disclosure vulnerability</title>
<reference>http://1337day.com/exploit/20027</reference>
<type>FPD</type>
</vulnerability>
</theme>
<theme name="vithy">
<vulnerability>
<title>vithy Full Path Disclosure vulnerability</title>
<reference>http://1337day.com/exploit/20040</reference>
<type>FPD</type>
</vulnerability>
</theme>
</vulnerabilities>

2
wpscan.rb
View File

@@ -146,6 +146,8 @@ begin
start_time = Time.now start_time = Time.now
puts "| URL: #{wp_target.url}" puts "| URL: #{wp_target.url}"
puts "| Started on #{start_time.asctime}" puts "| Started on #{start_time.asctime}"
puts "| Total vulnerable plugins: #{wp_target.plugin_vulns_count}"
puts "| Total vulnerable themes: #{wp_target.theme_vulns_count}"
puts puts
if wp_target.has_robots? if wp_target.has_robots?