RubygemsResearch

Sha256: c2a1e66f4ac7511f49c7031ec7b30ba78842c188ba91c61e9e457f5998bc2cde

Contents?: true

Size: 769 Bytes

Versions: 10

Compression:

Stored size: 769 Bytes

module WPScan
  module Finders
    module InterestingFindings
      # Emergency Password Reset Script finder
      class EmergencyPwdResetScript < CMSScanner::Finders::Finder
        # @return [ InterestingFinding ]
        def aggressive(_opts = {})
          url  = target.url('/emergency.php')
          res  = Browser.get(url)

          return unless res.code == 200 && !target.homepage_or_404?(res)

          WPScan::InterestingFinding.new(
            url,
            confidence: res.body =~ /password/i ? 100 : 40,
            found_by: DIRECT_ACCESS,
            references: {
              url: 'https://codex.wordpress.org/Resetting_Your_Password#Using_the_Emergency_Password_Reset_Script'
            }
          )
        end
      end
    end
  end
end

Version data entries

10 entries across 10 versions & 1 rubygems

Version	Path
wpscan-3.3.2	app/finders/interesting_findings/emergency_pwd_reset_script.rb
wpscan-3.3.1	app/finders/interesting_findings/emergency_pwd_reset_script.rb
wpscan-3.3.0	app/finders/interesting_findings/emergency_pwd_reset_script.rb
wpscan-3.2.1	app/finders/interesting_findings/emergency_pwd_reset_script.rb
wpscan-3.2.0	app/finders/interesting_findings/emergency_pwd_reset_script.rb
wpscan-3.1.0	app/finders/interesting_findings/emergency_pwd_reset_script.rb
wpscan-3.0.8	app/finders/interesting_findings/emergency_pwd_reset_script.rb
wpscan-3.0.7	app/finders/interesting_findings/emergency_pwd_reset_script.rb
wpscan-3.0.6	app/finders/interesting_findings/emergency_pwd_reset_script.rb
wpscan-3.0.5	app/finders/interesting_findings/emergency_pwd_reset_script.rb