Sha256: f0c29700322c2ceae5d679e17d400fa60ea6ec9017d4ad7dcd3715d23612c360

Contents?: true

Size: 1.3 KB

Versions: 4

Compression:

Stored size: 1.3 KB

Contents

module WPScan
  module Finders
    module PluginVersion
      module LayerSlider
        # Version from a Translation file
        #
        # See https://github.com/wpscanteam/wpscan/issues/765
        class TranslationFile < CMSScanner::Finders::Finder
          # @param [ Hash ] opts
          #
          # @return [ Version ]
          def aggressive(_opts = {})
            potential_urls.each do |url|
              res = Browser.get(url)

              next unless res.code == 200 && res.body =~ /Project-Id-Version: LayerSlider WP v?([0-9\.][^\\\s]+)/

              return WPScan::Version.new(
                Regexp.last_match[1],
                found_by: 'Translation File (Aggressive Detection)',
                confidence: 90,
                interesting_entries: ["#{url}, Match: '#{Regexp.last_match}'"]
              )
            end
            nil
          end

          # @return [ Array<String> ] The potential URLs where the version is disclosed
          def potential_urls
            # Recent versions seem to use the 'locales' directory instead of the 'languages' one.
            # Maybe also check other locales ?
            %w(locales languages).reduce([]) do |a, e|
              a << target.url("#{e}/LayerSlider-en_US.po")
            end
          end
        end
      end
    end
  end
end

Version data entries

4 entries across 4 versions & 1 rubygems

Version Path
wpscan-3.0.3 app/finders/plugin_version/layer_slider/translation_file.rb
wpscan-3.0.2 app/finders/plugin_version/layer_slider/translation_file.rb
wpscan-3.0.1 app/finders/plugin_version/layer_slider/translation_file.rb
wpscan-3.0 app/finders/plugin_version/layer_slider/translation_file.rb