Contents

module WPScan
  module Finders
    module WpVersion
      # RDF Generator Version Finder
      class RDFGenerator < CMSScanner::Finders::Finder
        include Finder::WpVersion::SmartURLChecker

        def process_urls(urls, _opts = {})
          found = Findings.new

          urls.each do |url|
            res = Browser.get_and_follow_location(url)

            res.html.xpath('//generatoragent').each do |node|
              next unless node['rdf:resource'] =~ %r{\Ahttps?://wordpress\.(?:[a-z.]+)/\?v=(.*)\z}i

              found << create_version(
                Regexp.last_match[1],
                found_by: found_by,
                entries: ["#{res.effective_url}, #{node.to_s.strip}"]
              )
            end
          end

          found
        end

        def passive_urls_xpath
          '//a[contains(@href, "rdf")]'
        end

        def aggressive_urls(_opts = {})
          [target.url('feed/rdf/')]
        end
      end
    end
  end
end

Version data entries

9 entries across 9 versions & 1 rubygems

Version	Path
wpscan-3.2.1	app/finders/wp_version/rdf_generator.rb
wpscan-3.2.0	app/finders/wp_version/rdf_generator.rb
wpscan-3.1.0	app/finders/wp_version/rdf_generator.rb
wpscan-3.0.8	app/finders/wp_version/rdf_generator.rb
wpscan-3.0.7	app/finders/wp_version/rdf_generator.rb
wpscan-3.0.6	app/finders/wp_version/rdf_generator.rb
wpscan-3.0.5	app/finders/wp_version/rdf_generator.rb
wpscan-3.0.4	app/finders/wp_version/rdf_generator.rb
wpscan-3.0.3	app/finders/wp_version/rdf_generator.rb