Contents

module WPScan
  module Finders
    module InterestingFindings
      # UploadSQLDump finder
      class UploadSQLDump < CMSScanner::Finders::Finder
        SQL_PATTERN = /(?:(?:(?:DROP|CREATE) TABLE)|INSERT INTO)/

        # @return [ InterestingFinding ]
        def aggressive(_opts = {})
          url = dump_url
          res = Browser.get(url)

          return unless res.code == 200 && res.body =~ SQL_PATTERN

          WPScan::InterestingFinding.new(
            url,
            confidence: 100,
            found_by: DIRECT_ACCESS
          )
        end

        def dump_url
          target.url('wp-content/uploads/dump.sql')
        end
      end
    end
  end
end

Version data entries

15 entries across 15 versions & 1 rubygems

Version	Path
wpscan-3.3.2	app/finders/interesting_findings/upload_sql_dump.rb
wpscan-3.3.1	app/finders/interesting_findings/upload_sql_dump.rb
wpscan-3.3.0	app/finders/interesting_findings/upload_sql_dump.rb
wpscan-3.2.1	app/finders/interesting_findings/upload_sql_dump.rb
wpscan-3.2.0	app/finders/interesting_findings/upload_sql_dump.rb
wpscan-3.1.0	app/finders/interesting_findings/upload_sql_dump.rb
wpscan-3.0.8	app/finders/interesting_findings/upload_sql_dump.rb
wpscan-3.0.7	app/finders/interesting_findings/upload_sql_dump.rb
wpscan-3.0.6	app/finders/interesting_findings/upload_sql_dump.rb
wpscan-3.0.5	app/finders/interesting_findings/upload_sql_dump.rb
wpscan-3.0.4	app/finders/interesting_findings/upload_sql_dump.rb
wpscan-3.0.3	app/finders/interesting_findings/upload_sql_dump.rb
wpscan-3.0.2	app/finders/interesting_findings/upload_sql_dump.rb
wpscan-3.0.1	app/finders/interesting_findings/upload_sql_dump.rb
wpscan-3.0	app/finders/interesting_findings/upload_sql_dump.rb