cms_scanner 0.13.3 → 0.13.7

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 89d37ba77ff1070c9addc53d0ecabaf1252e3cf2bf88a91b3af80f91342adbf3
-  data.tar.gz: 8f3b10edf7482677f61b50725fb8567149fec6d2df40ad47f45a98f8452cd774
+  metadata.gz: 4e844a7c12e7e4767678eee8958f7b6c863789f4478553b9260e86dea258c974
+  data.tar.gz: e203a131365c6b7637842c6296918135e3dc97bb6bd8a922214c3629779e622e
 SHA512:
-  metadata.gz: acd1f06bbc57f14b3c82de562f424892e9af6b1eda64e7dcdbc9a8ade93cd87ed5bab4f449cedf0653dab7df3ba9e9f3cdb84e2847da9a68f958cd8d7e0531a1
-  data.tar.gz: 1d0f21bd6935c6fa2e4302db95a70932b7a472ec68dceb42b7cd44ed2a999b893313e924b7b8bd5396eac2ce2739f3d5ef675b2d5a3c408e4bd12666904a99cf
+  metadata.gz: 4d1f9c65037c59a457dd2fb4370151b0cdc0639d5dcf01d84cfc2fba1b5956ab4761434ee0b85daff31aacf0fd1db0e61c74c34688678a23d72bee7108636ede
+  data.tar.gz: bb9e70348937efab985f82b5baca41e74fdbcfa7620b7fff1ef9f935f8562e8b0d3531bf0a0a2d73aaa1393305999d6bf3b8656f570b2c012d286784c44b40a3

data/app/controllers/core/cli_options.rb

@@ -55,7 +55,7 @@ module CMSScanner
           OptPositiveInteger.new(['-t', '--max-threads VALUE', 'The max threads to use'],
                                  default: 5),
           OptPositiveInteger.new(['--throttle MilliSeconds', 'Milliseconds to wait before doing another web request. ' \
-                                  'If used, the max threads will be set to 1.']),
+                                                             'If used, the max threads will be set to 1.']),
           OptPositiveInteger.new(['--request-timeout SECONDS', 'The request timeout in seconds'],
                                  default: 60),
           OptPositiveInteger.new(['--connect-timeout SECONDS', 'The connection timeout in seconds'],

data/lib/cms_scanner/errors/http.rb

@@ -64,7 +64,8 @@ module CMSScanner
 
       def to_s
         "The URL supplied redirects to #{redirect_uri}. Use the --ignore-main-redirect "\
-        'option to ignore the redirection and scan the target, or change the --url option value to the redirected URL.'
+          'option to ignore the redirection and scan the target, or change the --url option ' \
+          'value to the redirected URL.'
       end
     end
   end

data/lib/cms_scanner/finders/finder/enumerator.rb

@@ -62,7 +62,7 @@ module CMSScanner
           return unless valid_response_codes.include?(full_res.code)
 
           return if target.homepage_or_404?(full_res) ||
-                    opts[:exclude_content] && full_res.body&.match(opts[:exclude_content])
+                    (opts[:exclude_content] && full_res.body&.match(opts[:exclude_content]))
 
           full_res
         end

data/lib/cms_scanner/formatter.rb

@@ -84,6 +84,8 @@ module CMSScanner
         puts render(tpl, vars, controller_name)
       end
 
+      ERB_SUPPORTS_KVARGS = ::ERB.instance_method(:initialize).parameters.assoc(:key) # Ruby 2.6+
+
       # @param [ String ] tpl
       # @param [ Hash ] vars
       # @param [ String ] controller_name
@@ -93,7 +95,12 @@ module CMSScanner
 
         # '-' is used to disable new lines when -%> is used
         # See http://www.ruby-doc.org/stdlib-2.1.1/libdoc/erb/rdoc/ERB.html
-        ERB.new(File.read(view_path(tpl)), nil, '-').result(binding)
+        # Since ruby 2.6, KVARGS are supported and passing argument is deprecated in ruby 3+
+        if ERB_SUPPORTS_KVARGS
+          ERB.new(File.read(view_path(tpl)), trim_mode: '-').result(binding)
+        else
+          ERB.new(File.read(view_path(tpl)), nil, '-').result(binding)
+        end
       end
 
       # @param [ Hash ] vars

data/lib/cms_scanner/numeric.rb

@@ -6,7 +6,7 @@ class Numeric
   def bytes_to_human
     units = %w[B KB MB GB TB]
     e     = abs.zero? ? abs : (Math.log(abs) / Math.log(1024)).floor
-    s     = format('%<s>.3f', s: (abs.to_f / 1024**e))
+    s     = format('%<s>.3f', s: (abs.to_f / (1024**e)))
 
     s.sub(/\.?0*$/, " #{units[e]}")
   end

data/lib/cms_scanner/version.rb

@@ -2,5 +2,5 @@
 
 # Version
 module CMSScanner
-  VERSION = '0.13.3'
+  VERSION = '0.13.7'
 end

data/lib/cms_scanner/web_site.rb

@@ -8,19 +8,20 @@ module CMSScanner
     # @param [ String ] site_url
     # @param [ Hash ] opts
     def initialize(site_url, opts = {})
-      self.url = +site_url
+      self.url = site_url
       @opts    = opts
     end
 
     def url=(site_url)
-      # Add a trailing slash to the site url
-      # Making also sure the site_url is unfrozen
-      +site_url << '/' if site_url[-1, 1] != '/'
+      new_url = site_url.dup
 
-      # Use the validator to ensure the site_url has a correct format
-      OptParseValidator::OptURL.new([]).validate(site_url)
+      # Add a trailing slash to the URL
+      new_url << '/' if new_url[-1, 1] != '/'
 
-      @uri = Addressable::URI.parse(site_url).normalize
+      # Use the validator to ensure the URL has a correct format
+      OptParseValidator::OptURL.new([]).validate(new_url)
+
+      @uri = Addressable::URI.parse(new_url).normalize
     end
 
     # @param [ String ] path Optional path to merge with the uri

metadata

@@ -1,15 +1,35 @@
 --- !ruby/object:Gem::Specification
 name: cms_scanner
 version: !ruby/object:Gem::Version
-  version: 0.13.3
+  version: 0.13.7
 platform: ruby
 authors:
 - WPScanTeam
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2021-03-22 00:00:00.000000000 Z
+date: 2022-02-22 00:00:00.000000000 Z
 dependencies:
+- !ruby/object:Gem::Dependency
+  name: ethon
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0.14'
+    - - "<"
+      - !ruby/object:Gem::Version
+        version: '0.16'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0.14'
+    - - "<"
+      - !ruby/object:Gem::Version
+        version: '0.16'
 - !ruby/object:Gem::Dependency
   name: get_process_mem
   requirement: !ruby/object:Gem::Requirement
@@ -28,30 +48,36 @@ dependencies:
   name: nokogiri
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: 1.11.0
+        version: 1.11.4
+    - - "<"
+      - !ruby/object:Gem::Version
+        version: 1.14.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 1.11.4
+    - - "<"
       - !ruby/object:Gem::Version
-        version: 1.11.0
+        version: 1.14.0
 - !ruby/object:Gem::Dependency
   name: opt_parse_validator
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 1.9.4
+        version: 1.9.5
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 1.9.4
+        version: 1.9.5
 - !ruby/object:Gem::Dependency
   name: public_suffix
   requirement: !ruby/object:Gem::Requirement
@@ -182,14 +208,14 @@ dependencies:
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 3.10.0
+        version: 3.11.0
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 3.10.0
+        version: 3.11.0
 - !ruby/object:Gem::Dependency
   name: rspec-its
   requirement: !ruby/object:Gem::Requirement
@@ -210,28 +236,28 @@ dependencies:
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 1.11.0
+        version: 1.25.0
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 1.11.0
+        version: 1.25.0
 - !ruby/object:Gem::Dependency
   name: rubocop-performance
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 1.10.0
+        version: 1.13.0
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 1.10.0
+        version: 1.13.0
 - !ruby/object:Gem::Dependency
   name: simplecov
   requirement: !ruby/object:Gem::Requirement
@@ -266,14 +292,14 @@ dependencies:
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 3.12.0
+        version: 3.14.0
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 3.12.0
+        version: 3.14.0
 description: Framework to provide an easy way to implement CMS Scanners
 email:
 - contact@wpscan.com
@@ -393,7 +419,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.0.3
+rubygems_version: 3.0.3.1
 signing_key: 
 specification_version: 4
 summary: CMS Scanner Framework (experimental)