Class: WPScan::Finders::InterestingFindings::UploadDirectoryListing
- Inherits:
-
CMSScanner::Finders::Finder
- Object
- CMSScanner::Finders::Finder
- WPScan::Finders::InterestingFindings::UploadDirectoryListing
- Defined in:
- app/finders/interesting_findings/upload_directory_listing.rb
Overview
UploadDirectoryListing finder
Instance Method Summary collapse
Instance Method Details
#aggressive(_opts = {}) ⇒ InterestingFinding
7 8 9 10 11 12 13 14 15 16 17 18 19 20 |
# File 'app/finders/interesting_findings/upload_directory_listing.rb', line 7 def aggressive(_opts = {}) path = 'wp-content/uploads/' return unless target.directory_listing?(path) url = target.url(path) WPScan::InterestingFinding.new( url, confidence: 100, found_by: DIRECT_ACCESS, to_s: "Upload directory has listing enabled: #{url}" ) end |