garfield/wpscan
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Updates XMLRPC MultiCall attack to reflect use changes. Ref #1518

Browse Source
This commit is contained in:
erwanlr
2020-07-16 14:56:08 +02:00
parent f65532e347
commit b0260327c4
1 changed files with 4 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
app/finders/passwords/xml_rpc_multicall.rb
View File

@@ -23,7 +23,7 @@ module WPScan
end end
# @param [ Array<Model::User> ] users # @param [ Array<Model::User> ] users
# @param [ Array<String> ] passwords # @param [ String ] wordlist_path
# @param [ Hash ] opts # @param [ Hash ] opts
# @option opts [ Boolean ] :show_progression # @option opts [ Boolean ] :show_progression
# @option opts [ Integer ] :multicall_max_passwords # @option opts [ Integer ] :multicall_max_passwords
@@ -33,8 +33,9 @@ module WPScan
# TODO: Make rubocop happy about metrics etc # TODO: Make rubocop happy about metrics etc
# #
# rubocop:disable all # rubocop:disable all
def attack(users, passwords, opts = {}) def attack(users, wordlist_path, opts = {})
wordlist_index = 0 wordlist_index = 0
passwords = File.open(wordlist_path).reduce([]) { |acc, elem| acc << elem.chomp }
max_passwords = opts[:multicall_max_passwords] max_passwords = opts[:multicall_max_passwords]
current_passwords_size = passwords_size(max_passwords, users.size) current_passwords_size = passwords_size(max_passwords, users.size)
@@ -75,7 +76,7 @@ module WPScan
progress_bar.stop progress_bar.stop
break break
end end
begin begin
progress_bar.total = progress_bar.progress + ((passwords.size - wordlist_index) / current_passwords_size.round(1)).ceil progress_bar.total = progress_bar.progress + ((passwords.size - wordlist_index) / current_passwords_size.round(1)).ceil
rescue ProgressBar::InvalidProgressError rescue ProgressBar::InvalidProgressError