From a7df9feabffbff03f8b29649702a1efdd1007f24 Mon Sep 17 00:00:00 2001
From: erwanlr <erwan.lr@gmail.com>
Date: Thu, 6 Dec 2012 21:01:14 -0600
Subject: [PATCH] Fix #77 facebook.com detected as a custom wp-content
 directory

---
 lib/wpscan/wp_target.rb                               |  3 ++-
 .../wp_target/wp_content_dir/facebook-detection.htm   | 11 +++++++++++
 spec/lib/wpscan/wp_target_spec.rb                     |  6 ++++++
 3 files changed, 19 insertions(+), 1 deletion(-)
 create mode 100755 spec/fixtures/wpscan/wp_target/wp_content_dir/facebook-detection.htm

diff --git a/lib/wpscan/wp_target.rb b/lib/wpscan/wp_target.rb
index 1fbcd362..406f7213 100644
--- a/lib/wpscan/wp_target.rb
+++ b/lib/wpscan/wp_target.rb
@@ -97,7 +97,8 @@ class WpTarget
       if index_body[/\/wp-content\/(?:themes|plugins)\//i]
         @wp_content_dir = "wp-content"
       else
-        @wp_content_dir = index_body[/(?:href|src)\s*=\s*(?:"|').+#{Regexp.escape(uri_path)}([^"']+)\/(?:themes|plugins)\/.*(?:"|')/i, 1]
+        domains_excluded = "(?:www\.)?(facebook|twitter)\.com"
+        @wp_content_dir  = index_body[/(?:href|src)\s*=\s*(?:"|').+#{Regexp.escape(uri_path)}((?!#{domains_excluded})[^"']+)\/(?:themes|plugins)\/.*(?:"|')/i, 1]
       end
     end
     @wp_content_dir
diff --git a/spec/fixtures/wpscan/wp_target/wp_content_dir/facebook-detection.htm b/spec/fixtures/wpscan/wp_target/wp_content_dir/facebook-detection.htm
new file mode 100755
index 00000000..968d3c4b
--- /dev/null
+++ b/spec/fixtures/wpscan/wp_target/wp_content_dir/facebook-detection.htm
@@ -0,0 +1,11 @@
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml">
+
+<head profile="http://gmpg.org/xfn/11">
+	<link rel="stylesheet" href="/template/css/prey.base.css" type="text/css" media="screen" />
+	<script type="text/javascript" src="/template/js/prey.public.js"></script>
+</head>
+<body id="home">
+	<iframe src="//www.facebook.com/plugins/like.php?href=lamp.localhost&amp;send=false&amp;layout=box_count&amp;width=100&amp;show_faces=false&amp;action=recommend&amp;colorscheme=light&amp;font&amp;height=90" scrolling="no" frameborder="0" style="border:none; overflow:hidden; width:100px; height:62px;" allowTransparency="true"></iframe>
+</body>
+</html>
diff --git a/spec/lib/wpscan/wp_target_spec.rb b/spec/lib/wpscan/wp_target_spec.rb
index d8bfb10d..0792e92a 100644
--- a/spec/lib/wpscan/wp_target_spec.rb
+++ b/spec/lib/wpscan/wp_target_spec.rb
@@ -107,6 +107,7 @@ describe WpTarget do
       @expected  = "hello-world"
     end
 
+
     it "should return 'wp-content'" do
       @target_url = "http://lamp/wordpress-3.4.1"
       @fixture    = fixtures_dir + "/wordpress-3.4.1.htm"
@@ -155,6 +156,11 @@ describe WpTarget do
       @expected   = "wp-content"
     end
 
+    it "should not detect facebook.com as a custom wp-content directory" do
+      @target_url = "http://lamp.localhost/"
+      @fixture    = fixtures_dir + "/facebook-detection.htm"
+      @expected   = nil
+    end
   end
 
   describe "#wp_plugins_dir" do