cms_scanner 0.13.2 → 0.13.6

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: fffe0c16f6997feb9d468326198beacc87eebffbf420704f06d4f0fcf75a1041
-  data.tar.gz: a3bd4c7f63fb7b623a06a9d31383900dc00d0a28bbb4d453a22423feb28a8e82
+  metadata.gz: aa75f8f02c46d71e83a1046a0fb3e76c6ebfa35809158202cc251609031f436b
+  data.tar.gz: 3a7bc3d215a5b859e74c2bc7928fe210e87a10c609a0c6c4c8d166668e97865d
 SHA512:
-  metadata.gz: 4bffc3ece3ecd360750bb67e82718b1bb13f7026d0c7aa84786db2f85122033b6df1273c558879c48feb364b69ea08e3d4c4df69580e39001bf63dc375a45490
-  data.tar.gz: 57ccf22b7947670c969b72720e302c819c7aab0943a252c33b049d11664bc4f3b5c718dc3bd7c1904d48ba3d7c5c5b7ae0fbfe79402429e267ce55484e7f7f92
+  metadata.gz: 0ee139ea50a17e94bce5231f40c5b4934c2c68d507a6b8493f1af505525e1d18628de0e76e99675d7391310b76cbfde778420004a95a801484db687d27ab031d
+  data.tar.gz: e1fa8194c3b4edafcb3a62650b2a00bf99b7cf058b360d338b3ff7e537901b37f5b31b6346d26db5d95b438102241f41a8670a520b65796e9f51d88b52054c9d

data/app/controllers/core/cli_options.rb

@@ -55,7 +55,7 @@ module CMSScanner
           OptPositiveInteger.new(['-t', '--max-threads VALUE', 'The max threads to use'],
                                  default: 5),
           OptPositiveInteger.new(['--throttle MilliSeconds', 'Milliseconds to wait before doing another web request. ' \
-                                  'If used, the max threads will be set to 1.']),
+                                                             'If used, the max threads will be set to 1.']),
           OptPositiveInteger.new(['--request-timeout SECONDS', 'The request timeout in seconds'],
                                  default: 60),
           OptPositiveInteger.new(['--connect-timeout SECONDS', 'The connection timeout in seconds'],

data/lib/cms_scanner/errors/http.rb

@@ -64,7 +64,8 @@ module CMSScanner
 
       def to_s
         "The URL supplied redirects to #{redirect_uri}. Use the --ignore-main-redirect "\
-        'option to ignore the redirection and scan the target, or change the --url option value to the redirected URL.'
+          'option to ignore the redirection and scan the target, or change the --url option ' \
+          'value to the redirected URL.'
       end
     end
   end

data/lib/cms_scanner/finders/finder/enumerator.rb

@@ -59,8 +59,10 @@ module CMSScanner
 
           full_res = NS::Browser.get(head_res.effective_url, full_request_params)
 
+          return unless valid_response_codes.include?(full_res.code)
+
           return if target.homepage_or_404?(full_res) ||
-                    opts[:exclude_content] && full_res.body&.match(opts[:exclude_content])
+                    (opts[:exclude_content] && full_res.body&.match(opts[:exclude_content]))
 
           full_res
         end

data/lib/cms_scanner/numeric.rb

@@ -6,7 +6,7 @@ class Numeric
   def bytes_to_human
     units = %w[B KB MB GB TB]
     e     = abs.zero? ? abs : (Math.log(abs) / Math.log(1024)).floor
-    s     = format('%<s>.3f', s: (abs.to_f / 1024**e))
+    s     = format('%<s>.3f', s: (abs.to_f / (1024**e)))
 
     s.sub(/\.?0*$/, " #{units[e]}")
   end

data/lib/cms_scanner/version.rb

@@ -2,5 +2,5 @@
 
 # Version
 module CMSScanner
-  VERSION = '0.13.2'
+  VERSION = '0.13.6'
 end

data/lib/cms_scanner/web_site.rb

@@ -8,19 +8,20 @@ module CMSScanner
     # @param [ String ] site_url
     # @param [ Hash ] opts
     def initialize(site_url, opts = {})
-      self.url = +site_url
+      self.url = site_url
       @opts    = opts
     end
 
     def url=(site_url)
-      # Add a trailing slash to the site url
-      # Making also sure the site_url is unfrozen
-      +site_url << '/' if site_url[-1, 1] != '/'
+      new_url = site_url.dup
 
-      # Use the validator to ensure the site_url has a correct format
-      OptParseValidator::OptURL.new([]).validate(site_url)
+      # Add a trailing slash to the URL
+      new_url << '/' if new_url[-1, 1] != '/'
 
-      @uri = Addressable::URI.parse(site_url).normalize
+      # Use the validator to ensure the URL has a correct format
+      OptParseValidator::OptURL.new([]).validate(new_url)
+
+      @uri = Addressable::URI.parse(new_url).normalize
     end
 
     # @param [ String ] path Optional path to merge with the uri

metadata

@@ -1,15 +1,29 @@
 --- !ruby/object:Gem::Specification
 name: cms_scanner
 version: !ruby/object:Gem::Version
-  version: 0.13.2
+  version: 0.13.6
 platform: ruby
 authors:
 - WPScanTeam
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2021-03-22 00:00:00.000000000 Z
+date: 2021-09-22 00:00:00.000000000 Z
 dependencies:
+- !ruby/object:Gem::Dependency
+  name: ethon
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.14.0
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.14.0
 - !ruby/object:Gem::Dependency
   name: get_process_mem
   requirement: !ruby/object:Gem::Requirement
@@ -28,30 +42,36 @@ dependencies:
   name: nokogiri
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: 1.11.0
+        version: 1.11.4
+    - - "<"
+      - !ruby/object:Gem::Version
+        version: 1.13.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: 1.11.0
+        version: 1.11.4
+    - - "<"
+      - !ruby/object:Gem::Version
+        version: 1.13.0
 - !ruby/object:Gem::Dependency
   name: opt_parse_validator
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 1.9.4
+        version: 1.9.5
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 1.9.4
+        version: 1.9.5
 - !ruby/object:Gem::Dependency
   name: public_suffix
   requirement: !ruby/object:Gem::Requirement
@@ -210,28 +230,28 @@ dependencies:
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 1.11.0
+        version: 1.21.0
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 1.11.0
+        version: 1.21.0
 - !ruby/object:Gem::Dependency
   name: rubocop-performance
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 1.10.0
+        version: 1.11.0
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 1.10.0
+        version: 1.11.0
 - !ruby/object:Gem::Dependency
   name: simplecov
   requirement: !ruby/object:Gem::Requirement
@@ -266,14 +286,14 @@ dependencies:
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 3.12.0
+        version: 3.13.0
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 3.12.0
+        version: 3.13.0
 description: Framework to provide an easy way to implement CMS Scanners
 email:
 - contact@wpscan.com
@@ -393,7 +413,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.0.3
+rubygems_version: 3.0.3.1
 signing_key: 
 specification_version: 4
 summary: CMS Scanner Framework (experimental)