Class: WPScan::Finders::TimthumbVersion::BadRequest

Inherits:

CMSScanner::Finders::Finder

Object
CMSScanner::Finders::Finder
WPScan::Finders::TimthumbVersion::BadRequest

show all

Defined in:: app/finders/timthumb_version/bad_request.rb

Overview

Timthumb Version Finder from the body of a bad request See code.google.com/p/timthumb/source/browse/trunk/timthumb.php#435

Instance Method Summary collapse

#aggressive(_opts = {}) ⇒ Version

Instance Method Details

#aggressive(_opts = {}) ⇒ `Version`

Returns:

(Version)

# File 'app/finders/timthumb_version/bad_request.rb', line 10

def aggressive(_opts = {})
  return unless Browser.get(target.url).body =~ /(TimThumb version\s*: ([^<]+))/

  Model::Version.new(
    Regexp.last_match[2],
    found_by: 'Bad Request (Aggressive Detection)',
    confidence: 90,
    interesting_entries: ["#{target.url}, Match: '#{Regexp.last_match[1]}'"]
  )
end