Class: WPScan::Finders::TimthumbVersion::BadRequest

Inherits:

Finder

Object
Finder
WPScan::Finders::TimthumbVersion::BadRequest

show all

Defined in:: app/finders/timthumb_version/bad_request.rb

Overview

Timthumb Version Finder from the body of a bad request See code.google.com/p/timthumb/source/browse/trunk/timthumb.php#435

Constant Summary

Constants inherited from Finder

Finder::DIRECT_ACCESS

Instance Attribute Summary

Attributes inherited from Finder

#progress_bar, #target

Instance Method Summary collapse

#aggressive(_opts = {}) ⇒ Version

Methods inherited from Finder

#browser, #create_progress_bar, #found_by, #hydra, #initialize, #passive, #titleize

Constructor Details

This class inherits a constructor from WPScan::Finders::Finder

Instance Method Details

#aggressive(_opts = {}) ⇒ `Version`

Returns:

(Version)

# File 'app/finders/timthumb_version/bad_request.rb', line 10

def aggressive(_opts = {})
  return unless Browser.get(target.url).body =~ /(TimThumb version\s*: ([^<]+))/

  Model::Version.new(
    Regexp.last_match[2],
    found_by: 'Bad Request (Aggressive Detection)',
    confidence: 90,
    interesting_entries: ["#{target.url}, Match: '#{Regexp.last_match[1]}'"]
  )
end