Contents

module WPScan
  module Finders
    module InterestingFindings
      # BackupDB finder
      class BackupDB < CMSScanner::Finders::Finder
        # @return [ InterestingFinding ]
        def aggressive(_opts = {})
          path = 'wp-content/backup-db/'
          url  = target.url(path)
          res  = Browser.get(url)

          return unless [200, 403].include?(res.code) && !target.homepage_or_404?(res)

          WPScan::BackupDB.new(
            url,
            confidence: 70,
            found_by: DIRECT_ACCESS,
            interesting_entries: target.directory_listing_entries(path),
            references: { url: 'https://github.com/wpscanteam/wpscan/issues/422' }
          )
        end
      end
    end
  end
end

Version data entries

7 entries across 7 versions & 1 rubygems

Version	Path
wpscan-3.4.5	app/finders/interesting_findings/backup_db.rb
wpscan-3.4.4	app/finders/interesting_findings/backup_db.rb
wpscan-3.4.3	app/finders/interesting_findings/backup_db.rb
wpscan-3.4.2	app/finders/interesting_findings/backup_db.rb
wpscan-3.4.1	app/finders/interesting_findings/backup_db.rb
wpscan-3.4.0	app/finders/interesting_findings/backup_db.rb
wpscan-3.3.3	app/finders/interesting_findings/backup_db.rb