cms_scanner 0.13.7 → 0.13.8
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/app/controllers/core.rb +17 -3
- data/lib/cms_scanner/version.rb +1 -1
- data/lib/cms_scanner/web_site.rb +1 -1
- metadata +4 -4
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: c30dcbc053e4087d1f308d8390d026a028ddb2ca7c8f5f01108e72beed649e76
|
|
4
|
+
data.tar.gz: fdd30f85d4a8847da231678c1a785002421f322d65623a9ad66168a007cba420
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: a63a0447cc9f8dcc69974e6b82e93db96d534006e5a5a35b5de56a2374d8a28750034b3490e6180e8d1706a01132eb90ca49e6dc8060c4c625b704a93a76e862
|
|
7
|
+
data.tar.gz: 9b5e1f8fa8cbee20c75b163814196cc08292fbff28a6feb6d5f52f58cf36ecd9bbbd161b8c38abf3476fb7a87e564fcdb5bbb554c0611d4ba0a146dc083cb3e2
|
data/app/controllers/core.rb
CHANGED
|
@@ -48,14 +48,28 @@ module CMSScanner
|
|
|
48
48
|
raise Error::ProxyAuthRequired
|
|
49
49
|
end
|
|
50
50
|
|
|
51
|
-
|
|
52
|
-
|
|
53
|
-
|
|
51
|
+
handle_redirection(res)
|
|
52
|
+
end
|
|
53
|
+
|
|
54
|
+
# Checks for redirects, an out of scope redirect will raise an Error::HTTPRedirect
|
|
55
|
+
#
|
|
56
|
+
# @param [ Typhoeus::Response ] res
|
|
57
|
+
def handle_redirection(res)
|
|
58
|
+
effective_url = target.homepage_res.effective_url # Basically get and follow location of target.url
|
|
59
|
+
effective_uri = Addressable::URI.parse(effective_url)
|
|
60
|
+
|
|
61
|
+
# Case of http://a.com => https://a.com (or the opposite)
|
|
62
|
+
if !NS::ParsedCli.ignore_main_redirect && target.uri.domain == effective_uri.domain &&
|
|
63
|
+
target.uri.path == effective_uri.path && target.uri.scheme != effective_uri.scheme
|
|
64
|
+
|
|
65
|
+
target.url = effective_url
|
|
66
|
+
end
|
|
54
67
|
|
|
55
68
|
return if target.in_scope?(effective_url)
|
|
56
69
|
|
|
57
70
|
raise Error::HTTPRedirect, effective_url unless NS::ParsedCli.ignore_main_redirect
|
|
58
71
|
|
|
72
|
+
# Sets back homepage_res to unfollowed location in case of ignore_main_redirect used
|
|
59
73
|
target.homepage_res = res
|
|
60
74
|
end
|
|
61
75
|
|
data/lib/cms_scanner/version.rb
CHANGED
data/lib/cms_scanner/web_site.rb
CHANGED
|
@@ -115,7 +115,7 @@ module CMSScanner
|
|
|
115
115
|
|
|
116
116
|
# @return [ Hash ] The Typhoeus params to use to perform head requests
|
|
117
117
|
def head_or_get_params
|
|
118
|
-
@head_or_get_params ||= if NS::Browser.head(homepage_url).code
|
|
118
|
+
@head_or_get_params ||= if [0, 405, 501].include?(NS::Browser.head(homepage_url).code)
|
|
119
119
|
{ method: :get, maxfilesize: 1 }
|
|
120
120
|
else
|
|
121
121
|
{ method: :head }
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: cms_scanner
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.13.
|
|
4
|
+
version: 0.13.8
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- WPScanTeam
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2022-
|
|
11
|
+
date: 2022-04-04 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: ethon
|
|
@@ -236,14 +236,14 @@ dependencies:
|
|
|
236
236
|
requirements:
|
|
237
237
|
- - "~>"
|
|
238
238
|
- !ruby/object:Gem::Version
|
|
239
|
-
version: 1.
|
|
239
|
+
version: 1.26.0
|
|
240
240
|
type: :development
|
|
241
241
|
prerelease: false
|
|
242
242
|
version_requirements: !ruby/object:Gem::Requirement
|
|
243
243
|
requirements:
|
|
244
244
|
- - "~>"
|
|
245
245
|
- !ruby/object:Gem::Version
|
|
246
|
-
version: 1.
|
|
246
|
+
version: 1.26.0
|
|
247
247
|
- !ruby/object:Gem::Dependency
|
|
248
248
|
name: rubocop-performance
|
|
249
249
|
requirement: !ruby/object:Gem::Requirement
|