garfield/wpscan
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Fixes #1284

Browse Source
This commit is contained in:
erwanlr
2019-02-10 13:30:22 +00:00
parent 06f82d78f4
commit eb75d38716
2 changed files with 45 additions and 19 deletions
Download Patch File Download Diff File Expand all files Collapse all files

44
app/controllers/enumeration/enum_methods.rb
View File

@@ -3,9 +3,10 @@ module WPScan
# Enumeration Methods # Enumeration Methods
class Enumeration < CMSScanner::Controller::Base class Enumeration < CMSScanner::Controller::Base
# @param [ String ] type (plugins or themes) # @param [ String ] type (plugins or themes)
# @param [ Symbol ] detection_mode
# #
# @return [ String ] The related enumration message depending on the parsed_options and type supplied # @return [ String ] The related enumration message depending on the parsed_options and type supplied
def enum_message(type) def enum_message(type, detection_mode)
return unless %w[plugins themes].include?(type) return unless %w[plugins themes].include?(type)
details = if parsed_options[:enumerate][:"vulnerable_#{type}"] details = if parsed_options[:enumerate][:"vulnerable_#{type}"]
@@ -16,7 +17,20 @@ module WPScan
'Most Popular' 'Most Popular'
end end
"Enumerating #{details} #{type.capitalize}" "Enumerating #{details} #{type.capitalize} #{enum_detection_message(detection_mode)}"
end
# @param [ Symbol ] detection_mode
#
# @return [ String ]
def enum_detection_message(detection_mode)
detection_method = if detection_mode == :mixed
'Passive and Aggressive'
else
detection_mode.to_s.capitalize
end
"(via #{detection_method} Methods)"
end end
# @param [ String ] type (plugins, themes etc) # @param [ String ] type (plugins, themes etc)
@@ -49,12 +63,15 @@ module WPScan
sort: true sort: true
) )
output('@info', msg: enum_message('plugins')) if user_interaction? output('@info', msg: enum_message('plugins', opts[:mode])) if user_interaction?
# Enumerate the plugins & find their versions to avoid doing that when #version # Enumerate the plugins & find their versions to avoid doing that when #version
# is called in the view # is called in the view
plugins = target.plugins(opts) plugins = target.plugins(opts)
output('@info', msg: 'Checking Plugin Versions') if user_interaction? && !plugins.empty? if user_interaction? && !plugins.empty?
output('@info',
msg: "Checking Plugin Versions #{enum_detection_message(opts[:version_detection][:mode])}")
end
plugins.each(&:version) plugins.each(&:version)
@@ -92,12 +109,15 @@ module WPScan
sort: true sort: true
) )
output('@info', msg: enum_message('themes')) if user_interaction? output('@info', msg: enum_message('themes', opts[:mode])) if user_interaction?
# Enumerate the themes & find their versions to avoid doing that when #version # Enumerate the themes & find their versions to avoid doing that when #version
# is called in the view # is called in the view
themes = target.themes(opts) themes = target.themes(opts)
output('@info', msg: 'Checking Theme Versions') if user_interaction? && !themes.empty? if user_interaction? && !themes.empty?
output('@info',
msg: "Checking Theme Versions #{enum_detection_message(opts[:version_detection][:mode])}")
end
themes.each(&:version) themes.each(&:version)
@@ -125,21 +145,21 @@ module WPScan
def enum_timthumbs def enum_timthumbs
opts = default_opts('timthumbs').merge(list: parsed_options[:timthumbs_list]) opts = default_opts('timthumbs').merge(list: parsed_options[:timthumbs_list])
output('@info', msg: 'Enumerating Timthumbs') if user_interaction? output('@info', msg: "Enumerating Timthumbs #{enum_detection_message(opts[:mode])}") if user_interaction?
output('timthumbs', timthumbs: target.timthumbs(opts)) output('timthumbs', timthumbs: target.timthumbs(opts))
end end
def enum_config_backups def enum_config_backups
opts = default_opts('config_backups').merge(list: parsed_options[:config_backups_list]) opts = default_opts('config_backups').merge(list: parsed_options[:config_backups_list])
output('@info', msg: 'Enumerating Config Backups') if user_interaction? output('@info', msg: "Enumerating Config Backups #{enum_detection_message(opts[:mode])}") if user_interaction?
output('config_backups', config_backups: target.config_backups(opts)) output('config_backups', config_backups: target.config_backups(opts))
end end
def enum_db_exports def enum_db_exports
opts = default_opts('db_exports').merge(list: parsed_options[:db_exports_list]) opts = default_opts('db_exports').merge(list: parsed_options[:db_exports_list])
output('@info', msg: 'Enumerating DB Exports') if user_interaction? output('@info', msg: "Enumerating DB Exports #{enum_detection_message(opts[:mode])}") if user_interaction?
output('db_exports', db_exports: target.db_exports(opts)) output('db_exports', db_exports: target.db_exports(opts))
end end
@@ -147,7 +167,9 @@ module WPScan
opts = default_opts('medias').merge(range: parsed_options[:enumerate][:medias]) opts = default_opts('medias').merge(range: parsed_options[:enumerate][:medias])
if user_interaction? if user_interaction?
output('@info', msg: 'Enumerating Medias (Permalink setting must be set to "Plain" for those to be detected)') output('@info',
msg: "Enumerating Medias #{enum_detection_message(opts[:mode])} "\
'(Permalink setting must be set to "Plain" for those to be detected)')
end end
output('medias', medias: target.medias(opts)) output('medias', medias: target.medias(opts))
@@ -166,7 +188,7 @@ module WPScan
list: parsed_options[:users_list] list: parsed_options[:users_list]
) )
output('@info', msg: 'Enumerating Users') if user_interaction? output('@info', msg: "Enumerating Users #{enum_detection_message(opts[:mode])}") if user_interaction?
output('users', users: target.users(opts)) output('users', users: target.users(opts))
end end

20
spec/app/controllers/enumeration_spec.rb
View File

@@ -14,10 +14,11 @@ describe WPScan::Controller::Enumeration do
end end
describe '#enum_message' do describe '#enum_message' do
after { expect(controller.enum_message(type)).to eql @expected } after { expect(controller.enum_message(type, detection_mode)).to eql @expected }
context 'when type argument is incorrect' do context 'when type argument is incorrect' do
let(:type) { 'spec' } let(:type) { 'spec' }
let(:detection_mode) { :mixed }
it 'returns nil' do it 'returns nil' do
@expected = nil @expected = nil
@@ -26,29 +27,32 @@ describe WPScan::Controller::Enumeration do
%w[plugins themes].each do |t| %w[plugins themes].each do |t|
context "type = #{t}" do context "type = #{t}" do
let(:type) { t } let(:type) { t }
let(:detection_mode) { :mixed }
context 'when vulnerable' do context 'when vulnerable' do
let(:cli_args) { "#{super()} -e v#{type[0]}" } let(:cli_args) { "#{super()} -e v#{type[0]}" }
it 'returns the expected string' do it 'returns the expected string' do
@expected = "Enumerating Vulnerable #{type.capitalize}" @expected = "Enumerating Vulnerable #{type.capitalize} (via Passive and Aggressive Methods)"
end end
end end
context 'when all' do context 'when all' do
let(:cli_args) { "#{super()} -e a#{type[0]}" } let(:cli_args) { "#{super()} -e a#{type[0]}" }
let(:detection_mode) { :passive }
it 'returns the expected string' do it 'returns the expected string' do
@expected = "Enumerating All #{type.capitalize}" @expected = "Enumerating All #{type.capitalize} (via Passive Methods)"
end end
end end
context 'when most popular' do context 'when most popular' do
let(:cli_args) { "#{super()} -e #{type[0]}" } let(:cli_args) { "#{super()} -e #{type[0]}" }
let(:detection_mode) { :aggressive }
it 'returns the expected string' do it 'returns the expected string' do
@expected = "Enumerating Most Popular #{type.capitalize}" @expected = "Enumerating Most Popular #{type.capitalize} (via Aggressive Methods)"
end end
end end
end end