WpPlugin

Public Class Methods

new(options = {}) click to toggle source

# File lib/wpscan/wp_plugin.rb, line 20
def initialize(options = {})
  options[:vulns_xml]   = options[:vulns_xml] || DATA_DIR + '/plugin_vulns.xml'
  options[:vulns_xpath] = "//plugin[@name='#@name']/vulnerability"
  super(options)
end

Public Instance Methods

error_log?() click to toggle source

Discover any error_log files created by WordPress These are created by the WordPress error_log() function They are normally found in the /plugins/ directory, however can also be found in their specific plugin dir. www.exploit-db.com/ghdb/3714/

# File lib/wpscan/wp_plugin.rb, line 31
def error_log?
  response_body = Browser.instance.get(error_log_url(), :headers => { "range" => "bytes=0-700"}).body
  response_body[%{PHP Fatal error}] ? true : false
end

error_log_url() click to toggle source

# File lib/wpscan/wp_plugin.rb, line 36
def error_log_url
  get_url.merge("error_log").to_s
end

Home Classes Methods

In Files

Parent

Methods

Files

Class/Module Index

WpPlugin

Public Class Methods

Public Instance Methods