HELLO v3!!!

2018-09-26 21:12:01 +02:00
parent 28b9c15256
commit d268a86795
1871 changed files with 988118 additions and 0 deletions
--- a/spec/app/finders/timthumb_version/bad_request_spec.rb
+++ b/spec/app/finders/timthumb_version/bad_request_spec.rb
@@ -0,0 +1,36 @@
+require 'spec_helper'
+
+describe WPScan::Finders::TimthumbVersion::BadRequest do
+  subject(:finder) { described_class.new(target) }
+  let(:target)     { WPScan::Timthumb.new(url) }
+  let(:url)        { 'http://ex.lo/timthumb.php' }
+  let(:fixtures)   { File.join(FINDERS_FIXTURES, 'timthumb_version', 'bad_request') }
+
+  describe '#aggressive' do
+    before { stub_request(:get, url).to_return(body: File.read(File.join(fixtures, file))) }
+    after  { expect(finder.aggressive).to eql @expected }
+
+    context 'when no version' do
+      let(:file) { 'no_version.php' }
+
+      it 'returns nil' do
+        @expected = nil
+      end
+    end
+
+    context 'when a version' do
+      let(:file) { '2.8.14.php' }
+
+      it 'returns the expected version' do
+        @expected = WPScan::Version.new(
+          '2.8.14',
+          confidence: 90,
+          found_by: 'Bad Request (Aggressive Detection)',
+          interesting_entries: [
+            "#{url}, TimThumb version : 2.8.14"
+          ]
+        )
+      end
+    end
+  end
+end