Class: WPScan::Finders::PluginVersion::Readme

Inherits:

CMSScanner::Finders::Finder

• Object
• CMSScanner::Finders::Finder
• WPScan::Finders::PluginVersion::Readme

Defined in:

app/finders/plugin_version/readme.rb

Overview

Plugin Version Finder from the readme.txt file

Instance Method Summary

• #aggressive(_opts = {}) ⇒ Version
• #from_changelog_section(body) ⇒ String^?

  The best version number detected from the changelog section.

• #from_stable_tag(body) ⇒ String^?

  The version number detected from the stable tag.

• #version_numbers(body) ⇒ Array<String, String, Integer>

  Number, found_by, confidence.

Instance Method Details

#aggressive(_opts = {}) ⇒ Version

Returns:

• (Version)

# File 'app/finders/plugin_version/readme.rb', line 7

def aggressive(_opts = {})
  found_by_msg = 'Readme - %s (Aggressive Detection)'

  WPScan::WpItem::READMES.each do |file|
    url = target.url(file)
    res = Browser.get(url)

    next unless res.code == 200 && !(numbers = version_numbers(res.body)).empty?

    return numbers.reduce([]) do |a, e|
      a << WPScan::Version.new(
        e[0],
        found_by: format(found_by_msg, e[1]),
        confidence: e[2],
        interesting_entries: [url]
      )
    end
  end
  nil
end

#from_changelog_section(body) ⇒ String^?

Returns The best version number detected from the changelog section.

Parameters:

• body (String)

Returns:

• (String, nil) —

  The best version number detected from the changelog section

# File 'app/finders/plugin_version/readme.rb', line 57

def from_changelog_section(body)
  extracted_versions = body.scan(%r{[=]+\s+(?:v(?:ersion)?\s*)?([0-9\.-]+)[ \ta-z0-9\(\)\.\-\/]*[=]+}i)

  return if extracted_versions.nil? || extracted_versions.empty?

  extracted_versions.flatten!
  # must contain at least one number
  extracted_versions = extracted_versions.select { |x| x =~ /[0-9]+/ }

  sorted = extracted_versions.sort do |x, y|
    begin
      Gem::Version.new(x) <=> Gem::Version.new(y)
    rescue
      0
    end
  end

  sorted.last
end

#from_stable_tag(body) ⇒ String^?

Returns The version number detected from the stable tag.

Parameters:

• body (String)

Returns:

• (String, nil) —

  The version number detected from the stable tag

# File 'app/finders/plugin_version/readme.rb', line 46

def from_stable_tag(body)
  return unless body =~ /\b(?:stable tag|version):\s*(?!trunk)([0-9a-z\.-]+)/i

  number = Regexp.last_match[1]

  number if number =~ /[0-9]+/
end

#version_numbers(body) ⇒ Array<String, String, Integer>

Returns number, found_by, confidence.

Returns:

• (Array<String, String, Integer>) —

  number, found_by, confidence

# File 'app/finders/plugin_version/readme.rb', line 29

def version_numbers(body)
  numbers = []

  if (number = from_stable_tag(body))
    numbers << [number, 'Stable Tag', 80]
  end

  if (number = from_changelog_section(body))
    numbers << [number, 'ChangeLog Section', 50]
  end

  numbers
end