From ac609445fb930fd87e66b92c63f37887ad8d674f Mon Sep 17 00:00:00 2001 From: erwanlr Date: Wed, 10 Dec 2014 18:11:12 +0100 Subject: [PATCH] Adds a statement about mendatory newlines at the end of list - Ref #739 --- lib/common/models/wp_user/brute_forcable.rb | 2 +- lib/wpscan/wpscan_helper.rb | 4 ++-- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/lib/common/models/wp_user/brute_forcable.rb b/lib/common/models/wp_user/brute_forcable.rb index d3557d8c..effd86a0 100644 --- a/lib/common/models/wp_user/brute_forcable.rb +++ b/lib/common/models/wp_user/brute_forcable.rb @@ -28,7 +28,7 @@ class WpUser < WpItem progress_bar = self.progress_bar(count_file_lines(wordlist), options) File.open(wordlist).each do |password| - password.choomp! + password.chomp! # A successfull login will redirect us to the redirect_to parameter # Generate a random one on each request diff --git a/lib/wpscan/wpscan_helper.rb b/lib/wpscan/wpscan_helper.rb index b2d33caf..5d92e4ca 100644 --- a/lib/wpscan/wpscan_helper.rb +++ b/lib/wpscan/wpscan_helper.rb @@ -97,9 +97,9 @@ def help puts ' If no protocol is given (format host:port), HTTP will be used.' puts '--proxy-auth Supply the proxy login credentials.' puts '--basic-auth Set the HTTP Basic authentication.' - puts '--wordlist | -w Supply a wordlist for the password bruter and do the brute.' + puts '--wordlist | -w Supply a wordlist (with a newline at the end) for the password bruter and do the brute force.' puts '--username | -U Only brute force the supplied username.' - puts '--usernames Only brute force the usernames from the file.' + puts '--usernames Only brute force the usernames from the file (which need to have a newline at the end).' puts '--threads | -t The number of threads to use when multi-threading requests.' puts '--cache-ttl Typhoeus cache TTL.' puts '--request-timeout Request Timeout.'