Contents

# frozen_string_literal: true

module WPScan
  module Finders
    module WpVersion
      # Readme Version Finder
      class Readme < CMSScanner::Finders::Finder
        # @return [ WpVersion ]
        def aggressive(_opts = {})
          readme_url = target.url('readme.html') # Maybe move this into the Target ?

          node = Browser.get(readme_url).html.css('h1#logo').last

          return unless node&.text.to_s.strip =~ /\AVersion (.*)\z/i

          number = Regexp.last_match(1)

          return unless Model::WpVersion.valid?(number)

          Model::WpVersion.new(
            number,
            found_by: 'Readme (Aggressive Detection)',
            # Since WP 4.7, the Readme only contains the major version (ie 4.7, 4.8 etc)
            confidence: number >= '4.7' ? 10 : 90,
            interesting_entries: ["#{readme_url}, Match: '#{node.text.to_s.strip}'"]
          )
        end
      end
    end
  end
end

Version data entries

50 entries across 50 versions & 1 rubygems

Version	Path
wpscan-3.8.28	app/finders/wp_version/readme.rb
wpscan-3.8.27	app/finders/wp_version/readme.rb
wpscan-3.8.26	app/finders/wp_version/readme.rb
wpscan-3.8.25	app/finders/wp_version/readme.rb
wpscan-3.8.24	app/finders/wp_version/readme.rb
wpscan-3.8.22	app/finders/wp_version/readme.rb
wpscan-3.8.21	app/finders/wp_version/readme.rb
wpscan-3.8.20	app/finders/wp_version/readme.rb
wpscan-3.8.19	app/finders/wp_version/readme.rb
wpscan-3.8.18	app/finders/wp_version/readme.rb
wpscan-3.8.17	app/finders/wp_version/readme.rb
wpscan-3.8.16	app/finders/wp_version/readme.rb
wpscan-3.8.15	app/finders/wp_version/readme.rb
wpscan-3.8.14	app/finders/wp_version/readme.rb
wpscan-3.8.13	app/finders/wp_version/readme.rb
wpscan-3.8.12	app/finders/wp_version/readme.rb
wpscan-3.8.11	app/finders/wp_version/readme.rb
wpscan-3.8.10	app/finders/wp_version/readme.rb
wpscan-3.8.9	app/finders/wp_version/readme.rb
wpscan-3.8.8	app/finders/wp_version/readme.rb