Module: WPScan

Includes:
CMSScanner
Defined in:
lib/wpscan.rb,
app/models.rb,
app/models/media.rb,
app/models/theme.rb,
app/finders/users.rb,
app/models/plugin.rb,
lib/wpscan/errors.rb,
lib/wpscan/target.rb,
app/finders/medias.rb,
app/finders/themes.rb,
app/models/wp_item.rb,
app/models/xml_rpc.rb,
lib/wpscan/browser.rb,
lib/wpscan/finders.rb,
lib/wpscan/version.rb,
app/finders/plugins.rb,
app/models/timthumb.rb,
lib/wpscan/db/theme.rb,
app/controllers/core.rb,
app/models/db_export.rb,
lib/wpscan/db/plugin.rb,
lib/wpscan/db/themes.rb,
app/finders/timthumbs.rb,
app/models/wp_version.rb,
lib/wpscan/controller.rb,
lib/wpscan/db/plugins.rb,
lib/wpscan/db/sponsor.rb,
lib/wpscan/db/updater.rb,
lib/wpscan/db/wp_item.rb,
lib/wpscan/parsed_cli.rb,
lib/wpscan/references.rb,
lib/wpscan/vulnerable.rb,
app/finders/db_exports.rb,
app/finders/main_theme.rb,
app/finders/wp_version.rb,
lib/wpscan/controllers.rb,
lib/wpscan/db/vuln_api.rb,
lib/wpscan/db/wp_items.rb,
lib/wpscan/errors/http.rb,
app/controllers/aliases.rb,
app/controllers/vuln_api.rb,
app/models/config_backup.rb,
lib/wpscan/db/wp_version.rb,
lib/wpscan/errors/update.rb,
lib/wpscan/errors/xmlrpc.rb,
lib/wpscan/vulnerability.rb,
app/finders/plugins/xpath.rb,
app/finders/theme_version.rb,
app/controllers/main_theme.rb,
app/controllers/wp_version.rb,
app/finders/config_backups.rb,
app/finders/plugin_version.rb,
lib/wpscan/db/fingerprints.rb,
lib/wpscan/errors/vuln_api.rb,
app/controllers/enumeration.rb,
app/finders/plugins/comment.rb,
lib/wpscan/errors/wordpress.rb,
app/finders/timthumb_version.rb,
app/finders/users/oembed_api.rb,
app/finders/passwords/xml_rpc.rb,
app/finders/users/wp_json_api.rb,
app/finders/wp_version/readme.rb,
lib/wpscan/errors/enumeration.rb,
app/finders/passwords/wp_login.rb,
app/finders/users/author_posts.rb,
app/models/interesting_finding.rb,
app/controllers/password_attack.rb,
app/finders/theme_version/style.rb,
app/finders/users/rss_generator.rb,
app/finders/interesting_findings.rb,
app/finders/plugins/body_pattern.rb,
app/finders/users/author_sitemap.rb,
app/finders/plugin_version/readme.rb,
app/finders/plugins/config_parser.rb,
app/finders/wp_items/urls_in_page.rb,
app/controllers/custom_directories.rb,
app/finders/plugins/header_pattern.rb,
app/finders/plugins/javascript_var.rb,
app/finders/themes/known_locations.rb,
lib/wpscan/db/dynamic_finders/base.rb,
app/finders/plugins/known_locations.rb,
app/finders/plugins/query_parameter.rb,
app/finders/themes/urls_in_404_page.rb,
app/finders/themes/urls_in_homepage.rb,
lib/wpscan/db/dynamic_finders/theme.rb,
app/finders/plugins/urls_in_404_page.rb,
app/finders/plugins/urls_in_homepage.rb,
app/finders/wp_version/rdf_generator.rb,
app/finders/wp_version/rss_generator.rb,
lib/wpscan/db/dynamic_finders/plugin.rb,
lib/wpscan/target/platform/wordpress.rb,
app/finders/timthumbs/known_locations.rb,
app/finders/wp_version/atom_generator.rb,
app/finders/db_exports/known_locations.rb,
app/finders/users/login_error_messages.rb,
app/controllers/enumeration/cli_options.rb,
app/finders/interesting_findings/readme.rb,
app/finders/main_theme/urls_in_404_page.rb,
app/finders/main_theme/urls_in_homepage.rb,
app/finders/passwords/xml_rpc_multicall.rb,
lib/wpscan/db/dynamic_finders/wordpress.rb,
app/controllers/enumeration/enum_methods.rb,
app/finders/interesting_findings/wp_cron.rb,
app/finders/timthumb_version/bad_request.rb,
lib/wpscan/finders/dynamic_finder/finder.rb,
app/finders/users/author_id_brute_forcing.rb,
app/finders/config_backups/known_filenames.rb,
app/finders/interesting_findings/backup_db.rb,
app/finders/interesting_findings/debug_log.rb,
app/finders/interesting_findings/multisite.rb,
app/finders/users/yoast_seo_author_sitemap.rb,
app/finders/interesting_findings/mu_plugins.rb,
app/finders/medias/attachment_brute_forcing.rb,
app/finders/main_theme/css_style_in_404_page.rb,
app/finders/main_theme/css_style_in_homepage.rb,
app/finders/wp_version/unique_fingerprinting.rb,
lib/wpscan/finders/dynamic_finder/wp_version.rb,
app/finders/interesting_findings/php_disabled.rb,
app/finders/interesting_findings/registration.rb,
app/finders/interesting_findings/tmm_db_migrate.rb,
lib/wpscan/finders/dynamic_finder/version/xpath.rb,
app/finders/interesting_findings/upload_sql_dump.rb,
lib/wpscan/finders/dynamic_finder/version/finder.rb,
lib/wpscan/finders/dynamic_finder/version/comment.rb,
lib/wpscan/finders/dynamic_finder/wp_item_version.rb,
lib/wpscan/finders/dynamic_finder/wp_items/finder.rb,
app/finders/main_theme/woo_framework_meta_generator.rb,
app/finders/interesting_findings/full_path_disclosure.rb,
app/finders/theme_version/woo_framework_meta_generator.rb,
lib/wpscan/finders/dynamic_finder/version/body_pattern.rb,
lib/wpscan/finders/finder/wp_version/smart_url_checker.rb,
lib/wpscan/finders/dynamic_finder/version/config_parser.rb,
lib/wpscan/target/platform/wordpress/custom_directories.rb,
lib/wpscan/finders/dynamic_finder/version/header_pattern.rb,
lib/wpscan/finders/dynamic_finder/version/javascript_var.rb,
app/finders/interesting_findings/duplicator_installer_log.rb,
app/finders/interesting_findings/upload_directory_listing.rb,
lib/wpscan/finders/dynamic_finder/version/query_parameter.rb,
app/finders/interesting_findings/emergency_pwd_reset_script.rb

Overview

Version

Defined Under Namespace

Modules: Controller, DB, Error, Finders, Model, References, Vulnerable Classes: Browser, Controllers, ParsedCli, Target, Vulnerability

Constant Summary collapse

APP_DIR = 
Pathname.new(__FILE__).dirname.join('..', 'app').expand_path
DB_DIR = 
Pathname.new(Dir.home).join('.wpscan', 'db')
VERSION = 
'3.8.27'

Class Method Summary collapse

Class Method Details

.api_requestsInteger

Returns:

  • (Integer) 


57
58
59
 
# File 'lib/wpscan.rb', line 57

def self.api_requests
  @@api_requests ||= 0
end

.api_requests=(value) ⇒ Object

Parameters:

  • value (Integer) 


62
63
64
 
# File 'lib/wpscan.rb', line 62

def self.api_requests=(value)
  @@api_requests = value
end

.app_nameString

Override, otherwise it would be returned as ‘wp_scan’

Returns:

  • (String) 


52
53
54
 
# File 'lib/wpscan.rb', line 52

def self.app_name
  'wpscan'
end