garfield/wpscan
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
Files
d6386c05a49837a079901fe58b3a81a9a53f66a6
wpscan/doc_rdoc/WpItem/Vulnerable.html
Christian Mehlmauer d6386c05a4 docs
2013-05-28 19:52:50 +02:00

446 lines
15 KiB
HTML
Raw Blame History

<!DOCTYPE html>
<html>
<head>
<meta content="text/html; charset=UTF-8" http-equiv="Content-Type">
<title>module WpItem::Vulnerable - RDoc Documentation</title>
<link type="text/css" media="screen" href="../rdoc.css" rel="stylesheet">
<script type="text/javascript">
var rdoc_rel_prefix = "../";
</script>
<script type="text/javascript" charset="utf-8" src="../js/jquery.js"></script>
<script type="text/javascript" charset="utf-8" src="../js/navigation.js"></script>
<script type="text/javascript" charset="utf-8" src="../js/search_index.js"></script>
<script type="text/javascript" charset="utf-8" src="../js/search.js"></script>
<script type="text/javascript" charset="utf-8" src="../js/searcher.js"></script>
<script type="text/javascript" charset="utf-8" src="../js/darkfish.js"></script>
<body id="top" class="module">
<nav id="metadata">
<nav id="home-section" class="section">
<h3 class="section-header">
<a href="../index.html">Home</a>
<a href="../table_of_contents.html#classes">Classes</a>
<a href="../table_of_contents.html#methods">Methods</a>
</h3>
</nav>
<nav id="search-section" class="section project-section" class="initially-hidden">
<form action="#" method="get" accept-charset="utf-8">
<h3 class="section-header">
<input type="text" name="search" placeholder="Search" id="search-field"
title="Type to search, Up and Down to navigate, Enter to load">
</h3>
</form>
<ul id="search-results" class="initially-hidden"></ul>
</nav>
<div id="file-metadata">
<nav id="file-list-section" class="section">
<h3 class="section-header">Defined In</h3>
<ul>
<li>lib/common/models/wp_item/vulnerable.rb
</ul>
</nav>
</div>
<div id="class-metadata">
<!-- Method Quickref -->
<nav id="method-list-section" class="section">
<h3 class="section-header">Methods</h3>
<ul class="link-list">
<li ><a href="#method-i-vulnerabilities">#vulnerabilities</a>
<li ><a href="#method-i-vulnerable_to-3F">#vulnerable_to?</a>
</ul>
</nav>
</div>
<div id="project-metadata">
<nav id="fileindex-section" class="section project-section">
<h3 class="section-header">Pages</h3>
<ul>
<li class="file"><a href="../CREDITS.html">CREDITS</a>
<li class="file"><a href="../Gemfile.html">Gemfile</a>
<li class="file"><a href="../Gemfile_lock.html">Gemfile.lock</a>
<li class="file"><a href="../LICENSE.html">LICENSE</a>
<li class="file"><a href="../README.html">README</a>
<li class="file"><a href="../README_md.html">README</a>
<li class="file"><a href="../cache/browser/cookie-jar.html">cookie-jar</a>
<li class="file"><a href="../conf/browser_conf_json.html">browser.conf.json</a>
<li class="file"><a href="../generate_doc_sh.html">generate_doc.sh</a>
</ul>
</nav>
<nav id="classindex-section" class="section project-section">
<h3 class="section-header">Class and Module Index</h3>
<ul class="link-list">
<li><a href="../Array.html">Array</a>
<li><a href="../Browser.html">Browser</a>
<li><a href="../Browser/Actions.html">Browser::Actions</a>
<li><a href="../Browser/Options.html">Browser::Options</a>
<li><a href="../CacheFileStore.html">CacheFileStore</a>
<li><a href="../CheckerPlugin.html">CheckerPlugin</a>
<li><a href="../CustomOptionParser.html">CustomOptionParser</a>
<li><a href="../Ethon.html">Ethon</a>
<li><a href="../Ethon/Easy.html">Ethon::Easy</a>
<li><a href="../Ethon/Easy/Options.html">Ethon::Easy::Options</a>
<li><a href="../File.html">File</a>
<li><a href="../Gem.html">Gem</a>
<li><a href="../GenerateList.html">GenerateList</a>
<li><a href="../GitUpdater.html">GitUpdater</a>
<li><a href="../ListGeneratorPlugin.html">ListGeneratorPlugin</a>
<li><a href="../Object.html">Object</a>
<li><a href="../Plugin.html">Plugin</a>
<li><a href="../Plugins.html">Plugins</a>
<li><a href="../StatsPlugin.html">StatsPlugin</a>
<li><a href="../SvnParser.html">SvnParser</a>
<li><a href="../SvnUpdater.html">SvnUpdater</a>
<li><a href="../Terminal.html">Terminal</a>
<li><a href="../Terminal/Table.html">Terminal::Table</a>
<li><a href="../Terminal/Table/Style.html">Terminal::Table::Style</a>
<li><a href="../Typhoeus.html">Typhoeus</a>
<li><a href="../Typhoeus/Request.html">Typhoeus::Request</a>
<li><a href="../Typhoeus/Request/Cacheable.html">Typhoeus::Request::Cacheable</a>
<li><a href="../Typhoeus/Response.html">Typhoeus::Response</a>
<li><a href="../TyphoeusCache.html">TyphoeusCache</a>
<li><a href="../URI.html">URI</a>
<li><a href="../Updater.html">Updater</a>
<li><a href="../UpdaterFactory.html">UpdaterFactory</a>
<li><a href="../VersionCompare.html">VersionCompare</a>
<li><a href="../Vulnerabilities.html">Vulnerabilities</a>
<li><a href="../Vulnerabilities/Output.html">Vulnerabilities::Output</a>
<li><a href="../Vulnerability.html">Vulnerability</a>
<li><a href="../Vulnerability/Output.html">Vulnerability::Output</a>
<li><a href="../WebSite.html">WebSite</a>
<li><a href="../WpItem.html">WpItem</a>
<li><a href="../WpItem/Existable.html">WpItem::Existable</a>
<li><a href="../WpItem/Findable.html">WpItem::Findable</a>
<li><a href="../WpItem/Infos.html">WpItem::Infos</a>
<li><a href="../WpItem/Output.html">WpItem::Output</a>
<li><a href="../WpItem/Versionable.html">WpItem::Versionable</a>
<li><a href="../WpItem/Vulnerable.html">WpItem::Vulnerable</a>
<li><a href="../WpItems.html">WpItems</a>
<li><a href="../WpItems/Detectable.html">WpItems::Detectable</a>
<li><a href="../WpItems/Output.html">WpItems::Output</a>
<li><a href="../WpPlugin.html">WpPlugin</a>
<li><a href="../WpPlugin/Vulnerable.html">WpPlugin::Vulnerable</a>
<li><a href="../WpPlugins.html">WpPlugins</a>
<li><a href="../WpPlugins/Detectable.html">WpPlugins::Detectable</a>
<li><a href="../WpTarget.html">WpTarget</a>
<li><a href="../WpTarget/Malwares.html">WpTarget::Malwares</a>
<li><a href="../WpTarget/WpConfigBackup.html">WpTarget::WpConfigBackup</a>
<li><a href="../WpTarget/WpCustomDirectories.html">WpTarget::WpCustomDirectories</a>
<li><a href="../WpTarget/WpFullPathDisclosure.html">WpTarget::WpFullPathDisclosure</a>
<li><a href="../WpTarget/WpLoginProtection.html">WpTarget::WpLoginProtection</a>
<li><a href="../WpTarget/WpReadme.html">WpTarget::WpReadme</a>
<li><a href="../WpTarget/WpRegistrable.html">WpTarget::WpRegistrable</a>
<li><a href="../WpTheme.html">WpTheme</a>
<li><a href="../WpTheme/Findable.html">WpTheme::Findable</a>
<li><a href="../WpTheme/Versionable.html">WpTheme::Versionable</a>
<li><a href="../WpTheme/Vulnerable.html">WpTheme::Vulnerable</a>
<li><a href="../WpThemes.html">WpThemes</a>
<li><a href="../WpThemes/Detectable.html">WpThemes::Detectable</a>
<li><a href="../WpTimthumb.html">WpTimthumb</a>
<li><a href="../WpTimthumb/Existable.html">WpTimthumb::Existable</a>
<li><a href="../WpTimthumb/Output.html">WpTimthumb::Output</a>
<li><a href="../WpTimthumb/Versionable.html">WpTimthumb::Versionable</a>
<li><a href="../WpTimthumbs.html">WpTimthumbs</a>
<li><a href="../WpTimthumbs/Detectable.html">WpTimthumbs::Detectable</a>
<li><a href="../WpUser.html">WpUser</a>
<li><a href="../WpUser/BruteForcable.html">WpUser::BruteForcable</a>
<li><a href="../WpUser/Existable.html">WpUser::Existable</a>
<li><a href="../WpUsers.html">WpUsers</a>
<li><a href="../WpUsers/BruteForcable.html">WpUsers::BruteForcable</a>
<li><a href="../WpUsers/Detectable.html">WpUsers::Detectable</a>
<li><a href="../WpUsers/Output.html">WpUsers::Output</a>
<li><a href="../WpVersion.html">WpVersion</a>
<li><a href="../WpVersion/Findable.html">WpVersion::Findable</a>
<li><a href="../WpVersion/Output.html">WpVersion::Output</a>
<li><a href="../WpVersion/Vulnerable.html">WpVersion::Vulnerable</a>
<li><a href="../WpscanOptions.html">WpscanOptions</a>
</ul>
</nav>
</div>
</nav>
<div id="documentation">
<h1 class="module">module WpItem::Vulnerable</h1>
<div id="description" class="description">
</div><!-- description -->
<section id="5Buntitled-5D" class="documentation-section">
<!-- Attributes -->
<section id="attribute-method-details" class="method-section section">
<h3 class="section-header">Attributes</h3>
<div id="attribute-i-vulns_file" class="method-detail">
<div class="method-heading attribute-method-heading">
<span class="method-name">vulns_file</span><span
class="attribute-access-type">[RW]</span>
</div>
<div class="method-description">
</div>
</div>
<div id="attribute-i-vulns_xpath" class="method-detail">
<div class="method-heading attribute-method-heading">
<span class="method-name">vulns_xpath</span><span
class="attribute-access-type">[RW]</span>
</div>
<div class="method-description">
</div>
</div>
</section><!-- attribute-method-details -->
<!-- Methods -->
<section id="public-instance-5Buntitled-5D-method-details" class="method-section section">
<h3 class="section-header">Public Instance Methods</h3>
<div id="method-i-vulnerabilities" class="method-detail ">
<div class="method-heading">
<span class="method-name">vulnerabilities</span><span
class="method-args">()</span>
<span class="method-click-advice">click to toggle source</span>
</div>
<div class="method-description">
<p>Get the vulnerabilities associated to the <a
href="../WpItem.html">WpItem</a> Filters out already fixed vulnerabilities</p>
<p>@return [ <a href="../Vulnerabilities.html">Vulnerabilities</a> ]</p>
<div class="method-source-code" id="vulnerabilities-source">
<pre><span class="ruby-comment"># File lib/common/models/wp_item/vulnerable.rb, line 10</span>
<span class="ruby-keyword">def</span> <span class="ruby-identifier">vulnerabilities</span>
<span class="ruby-identifier">xml</span> = <span class="ruby-identifier">xml</span>(<span class="ruby-identifier">vulns_file</span>)
<span class="ruby-identifier">vulnerabilities</span> = <span class="ruby-constant">Vulnerabilities</span>.<span class="ruby-identifier">new</span>
<span class="ruby-identifier">xml</span>.<span class="ruby-identifier">xpath</span>(<span class="ruby-identifier">vulns_xpath</span>).<span class="ruby-identifier">each</span> <span class="ruby-keyword">do</span> <span class="ruby-operator">|</span><span class="ruby-identifier">node</span><span class="ruby-operator">|</span>
<span class="ruby-identifier">vuln</span> = <span class="ruby-constant">Vulnerability</span>.<span class="ruby-identifier">load_from_xml_node</span>(<span class="ruby-identifier">node</span>)
<span class="ruby-keyword">if</span> <span class="ruby-identifier">vulnerable_to?</span>(<span class="ruby-identifier">vuln</span>)
<span class="ruby-identifier">vulnerabilities</span> <span class="ruby-operator">&lt;&lt;</span> <span class="ruby-identifier">vuln</span>
<span class="ruby-keyword">end</span>
<span class="ruby-keyword">end</span>
<span class="ruby-identifier">vulnerabilities</span>
<span class="ruby-keyword">end</span></pre>
</div><!-- vulnerabilities-source -->
</div>
</div><!-- vulnerabilities-method -->
<div id="method-i-vulnerable_to-3F" class="method-detail ">
<div class="method-heading">
<span class="method-name">vulnerable_to?</span><span
class="method-args">(vuln)</span>
<span class="method-click-advice">click to toggle source</span>
</div>
<div class="method-description">
<p>Checks if a item is vulnerable to a specific vulnerability</p>
<p>@param [ <a href="../Vulnerability.html">Vulnerability</a> ] vuln <a
href="../Vulnerability.html">Vulnerability</a> to check the item against</p>
<p>@return [ Boolean ]</p>
<div class="method-source-code" id="vulnerable_to-3F-source">
<pre><span class="ruby-comment"># File lib/common/models/wp_item/vulnerable.rb, line 28</span>
<span class="ruby-keyword">def</span> <span class="ruby-identifier">vulnerable_to?</span>(<span class="ruby-identifier">vuln</span>)
<span class="ruby-keyword">if</span> <span class="ruby-identifier">version</span> <span class="ruby-operator">&amp;&amp;</span> <span class="ruby-identifier">vuln</span> <span class="ruby-operator">&amp;&amp;</span> <span class="ruby-identifier">vuln</span>.<span class="ruby-identifier">fixed_in</span> <span class="ruby-operator">&amp;&amp;</span> <span class="ruby-operator">!</span><span class="ruby-identifier">vuln</span>.<span class="ruby-identifier">fixed_in</span>.<span class="ruby-identifier">empty?</span>
<span class="ruby-keyword">unless</span> <span class="ruby-constant">VersionCompare</span><span class="ruby-operator">::</span><span class="ruby-identifier">is_newer_or_same?</span>(<span class="ruby-identifier">vuln</span>.<span class="ruby-identifier">fixed_in</span>, <span class="ruby-identifier">version</span>)
<span class="ruby-keyword">return</span> <span class="ruby-keyword">true</span>
<span class="ruby-keyword">end</span>
<span class="ruby-keyword">else</span>
<span class="ruby-keyword">return</span> <span class="ruby-keyword">true</span>
<span class="ruby-keyword">end</span>
<span class="ruby-keyword">return</span> <span class="ruby-keyword">false</span>
<span class="ruby-keyword">end</span></pre>
</div><!-- vulnerable_to-3F-source -->
</div>
</div><!-- vulnerable_to-3F-method -->
</section><!-- public-instance-method-details -->
</section><!-- 5Buntitled-5D -->
</div><!-- documentation -->
<footer id="validator-badges">
<p><a href="http://validator.w3.org/check/referer">[Validate]</a>
<p>Generated by <a href="https://github.com/rdoc/rdoc">RDoc</a> 4.0.1.
<p>Generated with the <a href="http://deveiate.org/projects/Darkfish-Rdoc/">Darkfish Rdoc Generator</a> 3.
</footer>
Reference in New Issue View Git Blame Copy Permalink