garfield/wpscan
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

bugfixing

Browse Source
This commit is contained in:
Christian Mehlmauer
2012-09-16 12:26:28 +02:00
parent 9f856c1aec
commit ea31feaebc
5 changed files with 41 additions and 14 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
lib/wpscan/modules/wp_item.rb
View File

@@ -26,7 +26,7 @@ module WpItem
def get_url_without_filename
uri = get_url
URI.parse("#{uri.scheme}://#{uri.host}#{File.dirname(uri.path)}")
URI.parse("#{uri.scheme}://#{uri.host}#{File.dirname(uri.path)}/")
end
def version

11
lib/wpscan/modules/wp_plugins.rb
View File

@@ -28,7 +28,16 @@ module WpPlugins
options[:vulns_xpath_2] = "//plugin"
options[:type] = "plugins"
result = WpDetector.aggressive_detection(options)
result.sort_by { |p| p.name }
plugins = []
result.each do |r|
plugins << WpPlugin.new(
:url => r[:url],
:path => r[:path],
:wp_content_dir => r[:wp_content_dir],
:name => r[:name]
)
end
plugins.sort_by { |p| p.name }
end
# http://code.google.com/p/wpscan/issues/detail?id=42

13
lib/wpscan/modules/wp_themes.rb
View File

@@ -25,7 +25,16 @@ module WpThemes
options[:vulns_xpath_2] = "//theme"
options[:type] = "themes"
result = WpDetector.aggressive_detection(options)
result.sort_by { |t| t.name }
themes = []
result.each do |r|
themes << WpTheme.new(
:url => r[:url],
:path => r[:path],
:wp_content_dir => r[:wp_content_dir],
:name => r[:name]
)
end
themes.sort_by { |t| t.name }
end
def themes_from_passive_detection(wp_content_dir)
@@ -33,7 +42,7 @@ module WpThemes
temp = WpDetector.passive_detection(url(), "themes", wp_content_dir)
temp.each do |item|
themes << WpPlugin.new(
themes << WpTheme.new(
:url => item[:url],
:name => item[:name],
:path => item[:path],

11
lib/wpscan/wp_detector.rb
View File

@@ -22,7 +22,7 @@ class WpDetector
WpOptions.check_options(options)
result = items
unless items == nil or items.length == 0
if items == nil or items.length == 0
result = passive_detection(options[:url], options[:type], options[:wp_content_dir])
end
@@ -31,7 +31,7 @@ class WpDetector
already_present = false
result.each do |r|
# Already found via passive detection
if r.name == enum_result.name
if r[:name] == enum_result[:name]
already_present = true
break
end
@@ -60,7 +60,12 @@ class WpDetector
names.uniq!
names.each do |item|
items << { :url => url, :name => item, :path => "#{type}/#{item}" }
items << {
:url => url,
:name => item,
:path => "#{type}/#{item}",
:wp_content_dir => wp_content_dir
}
end
items
end

14
lib/wpscan/wp_enumerator.rb
View File

@@ -44,7 +44,7 @@ class WpEnumerator
enumerate_size = targets.size
targets.each do |target|
url = target.get_url
url = "#{target[:url]}#{target[:wp_content_dir]}/#{target[:path]}"
request = enum_browser.forge_request(url, :cache_timeout => 0, :follow_location => true)
request_count += 1
@@ -87,7 +87,12 @@ class WpEnumerator
# Open and parse the 'most popular' plugin list...
File.open(file, 'r') do |f|
f.readlines.collect do |line|
targets_url << WpPlugin.new(:url => url, :path => "#{type}/#{line.strip}", :wp_content_dir => wp_content_dir)
targets_url << {
:url => url,
:path => "#{type}/#{line.strip}",
:wp_content_dir => wp_content_dir,
:name => File.dirname(line.strip)
}
end
end
end
@@ -101,13 +106,12 @@ class WpEnumerator
item_name = node.attribute('name').text
if targets_url.grep(%r{/#{item_name}/}).empty?
# TODO: Generic
targets_url << WpPlugin.new(
targets_url << {
:url => url,
:path => "#{type}/#{item_name}",
:wp_content_dir => wp_content_dir,
:name => item_name
)
}
end
end