cms_scanner 0.9.0 → 0.10.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/lib/cms_scanner/references.rb +19 -3
- data/lib/cms_scanner/version.rb +1 -1
- data/lib/cms_scanner/vulnerability.rb +15 -9
- metadata +2 -2
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: b99be1a5c9ca5480c3144bd7bf47158131b37d2384d0efdead0af974823e2f91
|
|
4
|
+
data.tar.gz: ca62945912501cca054acda5c3567428f6d5952ed144f27115ecfd7ac38a8d24
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 92eefec3cc72a884f139077782486ba2bff6716f54566952f0f7d996400deeedc04131f704a2d0e63ba47d9eaaefe2ef8390cc98f411ccb231c876f3ff52c23c
|
|
7
|
+
data.tar.gz: 559ea905b19ec7657242e6a0ea4977dcc3f34b2e0159fab086496b138c8916df5b5920723ab0ea621c7141752ce6fc96e6191607fc3cd7c082e15ea5c4a4bce2
|
|
@@ -9,7 +9,7 @@ module CMSScanner
|
|
|
9
9
|
module ClassMethods
|
|
10
10
|
# @return [ Array<Symbol> ]
|
|
11
11
|
def references_keys
|
|
12
|
-
@references_keys ||= %i[cve exploitdb url metasploit packetstorm securityfocus]
|
|
12
|
+
@references_keys ||= %i[cve exploitdb url metasploit packetstorm securityfocus youtube]
|
|
13
13
|
end
|
|
14
14
|
end
|
|
15
15
|
|
|
@@ -18,7 +18,13 @@ module CMSScanner
|
|
|
18
18
|
@references = {}
|
|
19
19
|
|
|
20
20
|
self.class.references_keys.each do |key|
|
|
21
|
-
|
|
21
|
+
next unless refs.key?(key)
|
|
22
|
+
|
|
23
|
+
@references[key] = if key == :youtube
|
|
24
|
+
[*refs[:youtube]].map { |id| youtube_url(id) }
|
|
25
|
+
else
|
|
26
|
+
[*refs[key]].map(&:to_s)
|
|
27
|
+
end
|
|
22
28
|
end
|
|
23
29
|
end
|
|
24
30
|
|
|
@@ -30,7 +36,7 @@ module CMSScanner
|
|
|
30
36
|
# @return [ Array<String> ] All the references URLs
|
|
31
37
|
def references_urls
|
|
32
38
|
cve_urls + exploitdb_urls + urls + msf_urls +
|
|
33
|
-
packetstorm_urls + securityfocus_urls
|
|
39
|
+
packetstorm_urls + securityfocus_urls + youtube_urls
|
|
34
40
|
end
|
|
35
41
|
|
|
36
42
|
# @return [ Array<String> ] The CVEs
|
|
@@ -112,5 +118,15 @@ module CMSScanner
|
|
|
112
118
|
def securityfocus_url(id)
|
|
113
119
|
"https://www.securityfocus.com/bid/#{id}/"
|
|
114
120
|
end
|
|
121
|
+
|
|
122
|
+
# @return [ Array<String> ]
|
|
123
|
+
def youtube_urls
|
|
124
|
+
references[:youtube] || []
|
|
125
|
+
end
|
|
126
|
+
|
|
127
|
+
# @return [ String ]
|
|
128
|
+
def youtube_url(id)
|
|
129
|
+
"https://www.youtube.com/watch?v=#{id}"
|
|
130
|
+
end
|
|
115
131
|
end
|
|
116
132
|
end
|
data/lib/cms_scanner/version.rb
CHANGED
|
@@ -5,22 +5,27 @@ module CMSScanner
|
|
|
5
5
|
class Vulnerability
|
|
6
6
|
include References
|
|
7
7
|
|
|
8
|
-
attr_reader :title, :type, :fixed_in
|
|
8
|
+
attr_reader :title, :type, :fixed_in, :cvss
|
|
9
9
|
|
|
10
10
|
# @param [ String ] title
|
|
11
11
|
# @param [ Hash ] references
|
|
12
|
-
# @option references [ Array<String>, String ] cve
|
|
13
|
-
# @option references [ Array<String>, String ] secunia
|
|
14
|
-
# @option references [ Array<String>, String ] osvdb
|
|
15
|
-
# @option references [ Array<String>, String ] exploitdb
|
|
16
|
-
# @option references [ Array<String> ] url URL(s) to related advisories etc
|
|
17
|
-
# @option references [ Array<String>, String ] metasploit The related metasploit module(s)
|
|
12
|
+
# @option references [ Array<String>, String ] :cve
|
|
13
|
+
# @option references [ Array<String>, String ] :secunia
|
|
14
|
+
# @option references [ Array<String>, String ] :osvdb
|
|
15
|
+
# @option references [ Array<String>, String ] :exploitdb
|
|
16
|
+
# @option references [ Array<String> ] :url URL(s) to related advisories etc
|
|
17
|
+
# @option references [ Array<String>, String ] :metasploit The related metasploit module(s)
|
|
18
|
+
# @option references [ Array<String> ] :youtube
|
|
18
19
|
# @param [ String ] type
|
|
19
20
|
# @param [ String ] fixed_in
|
|
20
|
-
|
|
21
|
+
# @param [ HashSymbol ] cvss
|
|
22
|
+
# @option cvss [ String ] :score
|
|
23
|
+
# @option cvss [ String ] :vector
|
|
24
|
+
def initialize(title, references: {}, type: nil, fixed_in: nil, cvss: nil)
|
|
21
25
|
@title = title
|
|
22
26
|
@type = type
|
|
23
27
|
@fixed_in = fixed_in
|
|
28
|
+
@cvss = { score: cvss[:score], vector: cvss[:vector] } if cvss
|
|
24
29
|
|
|
25
30
|
self.references = references
|
|
26
31
|
end
|
|
@@ -32,7 +37,8 @@ module CMSScanner
|
|
|
32
37
|
title == other.title &&
|
|
33
38
|
type == other.type &&
|
|
34
39
|
references == other.references &&
|
|
35
|
-
fixed_in == other.fixed_in
|
|
40
|
+
fixed_in == other.fixed_in &&
|
|
41
|
+
cvss == other.cvss
|
|
36
42
|
end
|
|
37
43
|
end
|
|
38
44
|
end
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: cms_scanner
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.
|
|
4
|
+
version: 0.10.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- WPScanTeam
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2020-04-
|
|
11
|
+
date: 2020-04-16 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: get_process_mem
|