RubyGems - wpscan - Versions diffs - 3.8.28 → 4.0.0 - Mend

wpscan 3.8.28 → 4.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (252) hide show

checksums.yaml +4 -4
data/README.md +104 -30
data/app/app.rb +26 -0
data/app/controllers/aliases.rb +2 -2
data/app/controllers/authenticated_inventory.rb +43 -0
data/app/controllers/core/cli_options.rb +151 -0
data/app/controllers/core.rb +200 -25
data/app/controllers/custom_directories.rb +1 -1
data/app/controllers/enumeration/cli_options.rb +21 -31
data/app/controllers/enumeration/enum_methods.rb +145 -38
data/app/controllers/enumeration.rb +26 -3
data/app/controllers/interesting_findings.rb +25 -0
data/app/controllers/main_theme.rb +1 -1
data/app/controllers/password_attack.rb +14 -6
data/app/controllers/vuln_api.rb +9 -3
data/app/controllers/wp_version.rb +1 -1
data/app/controllers.rb +1 -0
data/app/finders/backup_folders/known_locations.rb +66 -0
data/app/finders/backup_folders.rb +19 -0
data/app/finders/config_backups/known_filenames.rb +6 -4
data/app/finders/config_backups.rb +1 -1
data/app/finders/db_exports/known_locations.rb +16 -14
data/app/finders/db_exports.rb +1 -1
data/app/finders/interesting_findings/backup_db.rb +1 -1
data/app/finders/interesting_findings/debug_log.rb +1 -1
data/app/finders/interesting_findings/duplicator_installer_log.rb +1 -1
data/app/finders/interesting_findings/emergency_pwd_reset_script.rb +1 -1
data/app/finders/interesting_findings/fantastico_fileslist.rb +21 -0
data/app/finders/interesting_findings/full_path_disclosure.rb +1 -1
data/app/finders/interesting_findings/headers.rb +17 -0
data/app/finders/interesting_findings/mu_plugins.rb +1 -1
data/app/finders/interesting_findings/multisite.rb +1 -1
data/app/finders/interesting_findings/php_disabled.rb +2 -2
data/app/finders/interesting_findings/readme.rb +1 -1
data/app/finders/interesting_findings/registration.rb +1 -1
data/app/finders/interesting_findings/robots_txt.rb +20 -0
data/app/finders/interesting_findings/search_replace_db_2.rb +19 -0
data/app/finders/interesting_findings/tmm_db_migrate.rb +1 -1
data/app/finders/interesting_findings/upload_directory_listing.rb +1 -1
data/app/finders/interesting_findings/upload_sql_dump.rb +2 -2
data/app/finders/interesting_findings/wp_cron.rb +1 -1
data/app/finders/interesting_findings/xml_rpc.rb +61 -0
data/app/finders/interesting_findings.rb +13 -4
data/app/finders/main_theme/css_style_in_homepage.rb +1 -1
data/app/finders/main_theme/urls_in_homepage.rb +3 -7
data/app/finders/main_theme/woo_framework_meta_generator.rb +4 -4
data/app/finders/main_theme.rb +1 -1
data/app/finders/medias/attachment_brute_forcing.rb +2 -2
data/app/finders/medias.rb +1 -1
data/app/finders/passwords/wp_login.rb +2 -2
data/app/finders/passwords/xml_rpc.rb +2 -2
data/app/finders/passwords/xml_rpc_multicall.rb +1 -1
data/app/finders/plugin_version/readme.rb +1 -1
data/app/finders/plugin_version.rb +1 -1
data/app/finders/plugins/known_locations.rb +17 -7
data/app/finders/plugins/urls_in_homepage.rb +3 -7
data/app/finders/plugins/wp_json_api.rb +85 -0
data/app/finders/plugins.rb +2 -1
data/app/finders/theme_version/style.rb +1 -1
data/app/finders/theme_version/woo_framework_meta_generator.rb +1 -1
data/app/finders/theme_version.rb +1 -1
data/app/finders/themes/known_locations.rb +12 -6
data/app/finders/themes/urls_in_homepage.rb +3 -7
data/app/finders/themes/wp_json_api.rb +74 -0
data/app/finders/themes.rb +2 -1
data/app/finders/timthumb_version/bad_request.rb +1 -1
data/app/finders/timthumb_version.rb +1 -1
data/app/finders/timthumbs/known_locations.rb +6 -4
data/app/finders/timthumbs.rb +1 -1
data/app/finders/users/author_id_brute_forcing.rb +11 -7
data/app/finders/users/author_posts.rb +1 -1
data/app/finders/users/author_sitemap.rb +1 -1
data/app/finders/users/login_error_messages.rb +1 -1
data/app/finders/users/oembed_api.rb +3 -1
data/app/finders/users/wp_json_api.rb +11 -7
data/app/finders/users.rb +1 -1
data/app/finders/wp_version/atom_generator.rb +1 -1
data/app/finders/wp_version/rdf_generator.rb +1 -1
data/app/finders/wp_version/readme.rb +1 -1
data/app/finders/wp_version/rss_generator.rb +1 -1
data/app/finders/wp_version/unique_fingerprinting.rb +2 -2
data/app/finders/wp_version.rb +1 -1
data/app/finders.rb +1 -0
data/app/formatters/cli.rb +79 -0
data/app/formatters/cli_no_color.rb +9 -0
data/app/formatters/cli_no_colour.rb +17 -0
data/app/formatters/json.rb +14 -0
data/app/formatters/jsonl.rb +29 -0
data/app/formatters/sarif.rb +311 -0
data/app/models/backup_folder.rb +39 -0
data/app/models/fantastico_fileslist.rb +34 -0
data/app/models/headers.rb +44 -0
data/app/models/interesting_finding.rb +41 -2
data/app/models/plugin.rb +8 -2
data/app/models/robots_txt.rb +31 -0
data/app/models/search_replace_db_2.rb +17 -0
data/app/models/theme.rb +9 -2
data/app/models/timthumb.rb +2 -2
data/app/models/user.rb +35 -0
data/app/models/version.rb +49 -0
data/app/models/wp_item/wordpress_org_data.rb +55 -0
data/app/models/wp_item.rb +109 -9
data/app/models/wp_version.rb +2 -2
data/app/models/xml_rpc.rb +73 -3
data/app/models.rb +2 -1
data/app/user_agents.txt +46 -0
data/app/views/cli/core/banner.erb +3 -3
data/app/views/cli/core/finished.erb +15 -0
data/app/views/cli/core/help.erb +4 -0
data/app/views/cli/core/started.erb +11 -0
data/app/views/cli/enumeration/backup_folders.erb +11 -0
data/app/views/cli/enumeration/plugin.erb +13 -0
data/app/views/cli/enumeration/plugins.erb +1 -12
data/app/views/cli/enumeration/theme.erb +4 -0
data/app/views/cli/enumeration/themes.erb +1 -3
data/app/views/cli/enumeration/user.erb +4 -0
data/app/views/cli/enumeration/users.erb +1 -3
data/app/views/cli/finding.erb +1 -1
data/app/views/cli/interesting_findings/_array.erb +10 -0
data/app/views/cli/interesting_findings/findings.erb +23 -0
data/app/views/cli/scan_aborted.erb +5 -0
data/app/views/cli/update_aborted.erb +5 -0
data/app/views/cli/vuln_api/status.erb +2 -0
data/app/views/cli/vulnerability.erb +6 -0
data/app/views/cli/wp_item.erb +4 -1
data/app/views/json/core/banner.erb +2 -8
data/app/views/json/core/finished.erb +13 -0
data/app/views/json/core/help.erb +4 -0
data/app/views/json/core/started.erb +10 -0
data/app/views/json/enumeration/backup_folders.erb +11 -0
data/app/views/json/enumeration/plugin.erb +15 -0
data/app/views/json/enumeration/theme.erb +5 -0
data/app/views/json/enumeration/user.erb +6 -0
data/app/views/json/finding.erb +8 -2
data/app/views/json/interesting_findings/findings.erb +24 -0
data/app/views/json/notice.erb +1 -0
data/app/views/json/scan_aborted.erb +5 -0
data/app/views/json/update_aborted.erb +5 -0
data/app/views/json/vuln_api/status.erb +2 -0
data/app/views/json/wp_item.erb +4 -1
data/bin/wpscan +1 -0
data/lib/opt_parse_validator/config_files_loader_merger/base.rb +26 -0
data/lib/opt_parse_validator/config_files_loader_merger/json.rb +17 -0
data/lib/opt_parse_validator/config_files_loader_merger/yml.rb +17 -0
data/lib/opt_parse_validator/config_files_loader_merger.rb +62 -0
data/lib/opt_parse_validator/errors.rb +9 -0
data/lib/opt_parse_validator/hacks.rb +19 -0
data/lib/opt_parse_validator/opts/alias.rb +28 -0
data/lib/opt_parse_validator/opts/array.rb +34 -0
data/lib/opt_parse_validator/opts/base.rb +142 -0
data/lib/opt_parse_validator/opts/boolean.rb +19 -0
data/lib/opt_parse_validator/opts/choice.rb +43 -0
data/lib/opt_parse_validator/opts/credentials.rb +15 -0
data/lib/opt_parse_validator/opts/directory_path.rb +17 -0
data/lib/opt_parse_validator/opts/file_path.rb +34 -0
data/lib/opt_parse_validator/opts/headers.rb +33 -0
data/lib/opt_parse_validator/opts/integer.rb +15 -0
data/lib/opt_parse_validator/opts/integer_range.rb +37 -0
data/lib/opt_parse_validator/opts/multi_choices.rb +135 -0
data/lib/opt_parse_validator/opts/path.rb +78 -0
data/lib/opt_parse_validator/opts/positive_integer.rb +16 -0
data/lib/opt_parse_validator/opts/proxy.rb +7 -0
data/lib/opt_parse_validator/opts/regexp.rb +14 -0
data/lib/opt_parse_validator/opts/smart_list.rb +30 -0
data/lib/opt_parse_validator/opts/string.rb +8 -0
data/lib/opt_parse_validator/opts/uri.rb +41 -0
data/lib/opt_parse_validator/opts/url.rb +11 -0
data/lib/opt_parse_validator/opts.rb +9 -0
data/lib/opt_parse_validator/version.rb +6 -0
data/lib/opt_parse_validator.rb +161 -0
data/lib/wpscan/browser/actions.rb +48 -0
data/lib/wpscan/browser/options.rb +92 -0
data/lib/wpscan/browser.rb +87 -2
data/lib/wpscan/browser_authenticator.rb +64 -0
data/lib/wpscan/cache/file_store.rb +77 -0
data/lib/wpscan/cache/typhoeus.rb +25 -0
data/lib/wpscan/controller.rb +100 -4
data/lib/wpscan/controllers.rb +78 -3
data/lib/wpscan/db/dynamic_finders/base.rb +3 -7
data/lib/wpscan/db/dynamic_finders/plugin.rb +2 -2
data/lib/wpscan/db/dynamic_finders/wordpress.rb +1 -1
data/lib/wpscan/db/fingerprints.rb +2 -2
data/lib/wpscan/db/updater.rb +23 -13
data/lib/wpscan/db/vuln_api.rb +19 -7
data/lib/wpscan/db/wp_item.rb +2 -2
data/lib/wpscan/errors/enumeration.rb +4 -4
data/lib/wpscan/errors/http.rb +82 -3
data/lib/wpscan/errors/saml.rb +28 -0
data/lib/wpscan/errors/scan.rb +14 -0
data/lib/wpscan/errors/update.rb +11 -3
data/lib/wpscan/errors/vuln_api.rb +24 -0
data/lib/wpscan/errors/wordpress.rb +2 -2
data/lib/wpscan/errors/wp_auth.rb +37 -0
data/lib/wpscan/errors.rb +4 -3
data/lib/wpscan/exit_code.rb +25 -0
data/lib/wpscan/finders/base_finders.rb +45 -0
data/lib/wpscan/finders/dynamic_finder/finder.rb +1 -1
data/lib/wpscan/finders/dynamic_finder/version/body_pattern.rb +1 -1
data/lib/wpscan/finders/dynamic_finder/version/comment.rb +1 -1
data/lib/wpscan/finders/dynamic_finder/version/header_pattern.rb +1 -1
data/lib/wpscan/finders/dynamic_finder/version/javascript_var.rb +1 -1
data/lib/wpscan/finders/dynamic_finder/version/query_parameter.rb +3 -5
data/lib/wpscan/finders/dynamic_finder/version/xpath.rb +1 -1
data/lib/wpscan/finders/dynamic_finder/wp_items/finder.rb +3 -3
data/lib/wpscan/finders/dynamic_finder/wp_version.rb +1 -1
data/lib/wpscan/finders/finder/breadth_first_dictionary_attack.rb +257 -0
data/lib/wpscan/finders/finder/enumerator.rb +77 -0
data/lib/wpscan/finders/finder/fingerprinter.rb +48 -0
data/lib/wpscan/finders/finder/smart_url_checker/findings.rb +33 -0
data/lib/wpscan/finders/finder/smart_url_checker.rb +60 -0
data/lib/wpscan/finders/finder/wp_version/smart_url_checker.rb +1 -1
data/lib/wpscan/finders/finder.rb +78 -0
data/lib/wpscan/finders/finding.rb +54 -0
data/lib/wpscan/finders/findings.rb +33 -0
data/lib/wpscan/finders/independent_finder.rb +33 -0
data/lib/wpscan/finders/independent_finders.rb +26 -0
data/lib/wpscan/finders/same_type_finder.rb +19 -0
data/lib/wpscan/finders/same_type_finders.rb +28 -0
data/lib/wpscan/finders/unique_finder.rb +19 -0
data/lib/wpscan/finders/unique_finders.rb +47 -0
data/lib/wpscan/finders.rb +11 -12
data/lib/wpscan/formatter/buffer.rb +17 -0
data/lib/wpscan/formatter.rb +152 -0
data/lib/wpscan/helper.rb +7 -1
data/lib/wpscan/http_status_tracking.rb +128 -0
data/lib/wpscan/numeric.rb +13 -0
data/lib/wpscan/parsed_cli.rb +31 -2
data/lib/wpscan/progressbar_null_output.rb +23 -0
data/lib/wpscan/public_suffix/domain.rb +44 -0
data/lib/wpscan/references.rb +118 -4
data/lib/wpscan/scan.rb +127 -0
data/lib/wpscan/target/hashes.rb +45 -0
data/lib/wpscan/target/platform/php.rb +124 -0
data/lib/wpscan/target/platform/wordpress/custom_directories.rb +3 -3
data/lib/wpscan/target/platform/wordpress.rb +7 -8
data/lib/wpscan/target/platform.rb +3 -0
data/lib/wpscan/target/scope.rb +103 -0
data/lib/wpscan/target/server/apache.rb +27 -0
data/lib/wpscan/target/server/generic.rb +72 -0
data/lib/wpscan/target/server/iis.rb +29 -0
data/lib/wpscan/target/server/nginx.rb +27 -0
data/lib/wpscan/target/server.rb +6 -0
data/lib/wpscan/target.rb +129 -9
data/lib/wpscan/typhoeus/hydra.rb +12 -0
data/lib/wpscan/typhoeus/response.rb +24 -1
data/lib/wpscan/version.rb +1 -1
data/lib/wpscan/vulnerability.rb +49 -3
data/lib/wpscan/vulnerability_filter.rb +68 -0
data/lib/wpscan/vulnerable.rb +13 -1
data/lib/wpscan/web_site.rb +152 -0
data/lib/wpscan.rb +126 -29
metadata +362 -20

metadata CHANGED Viewed

@@ -1,29 +1,252 @@
 --- !ruby/object:Gem::Specification
 name: wpscan
 version: !ruby/object:Gem::Version
-  version: 3.8.28
+  version: 4.0.0
 platform: ruby
 authors:
 - WPScanTeam
-autorequire:
 bindir: bin
 cert_chain: []
-date: 2025-02-24 00:00:00.000000000 Z
+date: 1980-01-02 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
-  name: cms_scanner
+  name: activesupport
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '7.1'
+    - - "<"
+      - !ruby/object:Gem::Version
+        version: '8.2'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '7.1'
+    - - "<"
+      - !ruby/object:Gem::Version
+        version: '8.2'
+- !ruby/object:Gem::Dependency
+  name: addressable
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '2.9'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '2.9'
+- !ruby/object:Gem::Dependency
+  name: ethon
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0.14'
+    - - "<"
+      - !ruby/object:Gem::Version
+        version: '0.19'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0.14'
+    - - "<"
+      - !ruby/object:Gem::Version
+        version: '0.19'
+- !ruby/object:Gem::Dependency
+  name: get_process_mem
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 0.2.5
+    - - "<"
+      - !ruby/object:Gem::Version
+        version: 1.1.0
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 0.2.5
+    - - "<"
+      - !ruby/object:Gem::Version
+        version: 1.1.0
+- !ruby/object:Gem::Dependency
+  name: nokogiri
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.16'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.16'
+- !ruby/object:Gem::Dependency
+  name: public_suffix
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 4.0.3
+    - - "<"
+      - !ruby/object:Gem::Version
+        version: '7.1'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 4.0.3
+    - - "<"
+      - !ruby/object:Gem::Version
+        version: '7.1'
+- !ruby/object:Gem::Dependency
+  name: ruby-progressbar
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '1.10'
+    - - "<"
+      - !ruby/object:Gem::Version
+        version: '1.14'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '1.10'
+    - - "<"
+      - !ruby/object:Gem::Version
+        version: '1.14'
+- !ruby/object:Gem::Dependency
+  name: sys-proctable
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 1.2.2
+    - - "<"
+      - !ruby/object:Gem::Version
+        version: 1.4.0
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 1.2.2
+    - - "<"
+      - !ruby/object:Gem::Version
+        version: 1.4.0
+- !ruby/object:Gem::Dependency
+  name: typhoeus
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '1.3'
+    - - "<"
+      - !ruby/object:Gem::Version
+        version: '1.7'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '1.3'
+    - - "<"
+      - !ruby/object:Gem::Version
+        version: '1.7'
+- !ruby/object:Gem::Dependency
+  name: xmlrpc
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.3'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.3'
+- !ruby/object:Gem::Dependency
+  name: yajl-ruby
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 1.4.1
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 1.4.1
+- !ruby/object:Gem::Dependency
+  name: ostruct
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.6'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.6'
+- !ruby/object:Gem::Dependency
+  name: fiddle
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.1'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.1'
+- !ruby/object:Gem::Dependency
+  name: ferrum
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.15.0
+        version: '0.8'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.15.0
+        version: '0.8'
 - !ruby/object:Gem::Dependency
   name: bundler
   requirement: !ruby/object:Gem::Requirement
@@ -44,14 +267,14 @@ dependencies:
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 1.0.0
+        version: 1.1.0
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 1.0.0
+        version: 1.1.0
 - !ruby/object:Gem::Dependency
   name: rake
   requirement: !ruby/object:Gem::Requirement
@@ -100,28 +323,28 @@ dependencies:
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 1.26.0
+        version: '1.82'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 1.26.0
+        version: '1.82'
 - !ruby/object:Gem::Dependency
   name: rubocop-performance
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 1.13.0
+        version: '1.26'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 1.13.0
+        version: '1.26'
 - !ruby/object:Gem::Dependency
   name: simplecov
   requirement: !ruby/object:Gem::Requirement
@@ -142,14 +365,14 @@ dependencies:
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.8.0
+        version: 0.9.0
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.8.0
+        version: 0.9.0
 - !ruby/object:Gem::Dependency
   name: stackprof
   requirement: !ruby/object:Gem::Requirement
@@ -170,14 +393,14 @@ dependencies:
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 3.23.1
+        version: 3.26.2
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 3.23.1
+        version: 3.26.2
 description: WPScan is a black box WordPress vulnerability scanner.
 email:
 - contact@wpscan.com
@@ -191,16 +414,21 @@ files:
 - app/app.rb
 - app/controllers.rb
 - app/controllers/aliases.rb
+- app/controllers/authenticated_inventory.rb
 - app/controllers/core.rb
+- app/controllers/core/cli_options.rb
 - app/controllers/custom_directories.rb
 - app/controllers/enumeration.rb
 - app/controllers/enumeration/cli_options.rb
 - app/controllers/enumeration/enum_methods.rb
+- app/controllers/interesting_findings.rb
 - app/controllers/main_theme.rb
 - app/controllers/password_attack.rb
 - app/controllers/vuln_api.rb
 - app/controllers/wp_version.rb
 - app/finders.rb
+- app/finders/backup_folders.rb
+- app/finders/backup_folders/known_locations.rb
 - app/finders/config_backups.rb
 - app/finders/config_backups/known_filenames.rb
 - app/finders/db_exports.rb
@@ -210,16 +438,21 @@ files:
 - app/finders/interesting_findings/debug_log.rb
 - app/finders/interesting_findings/duplicator_installer_log.rb
 - app/finders/interesting_findings/emergency_pwd_reset_script.rb
+- app/finders/interesting_findings/fantastico_fileslist.rb
 - app/finders/interesting_findings/full_path_disclosure.rb
+- app/finders/interesting_findings/headers.rb
 - app/finders/interesting_findings/mu_plugins.rb
 - app/finders/interesting_findings/multisite.rb
 - app/finders/interesting_findings/php_disabled.rb
 - app/finders/interesting_findings/readme.rb
 - app/finders/interesting_findings/registration.rb
+- app/finders/interesting_findings/robots_txt.rb
+- app/finders/interesting_findings/search_replace_db_2.rb
 - app/finders/interesting_findings/tmm_db_migrate.rb
 - app/finders/interesting_findings/upload_directory_listing.rb
 - app/finders/interesting_findings/upload_sql_dump.rb
 - app/finders/interesting_findings/wp_cron.rb
+- app/finders/interesting_findings/xml_rpc.rb
 - app/finders/main_theme.rb
 - app/finders/main_theme/css_style_in_404_page.rb
 - app/finders/main_theme/css_style_in_homepage.rb
@@ -244,6 +477,7 @@ files:
 - app/finders/plugins/query_parameter.rb
 - app/finders/plugins/urls_in_404_page.rb
 - app/finders/plugins/urls_in_homepage.rb
+- app/finders/plugins/wp_json_api.rb
 - app/finders/plugins/xpath.rb
 - app/finders/theme_version.rb
 - app/finders/theme_version/style.rb
@@ -252,6 +486,7 @@ files:
 - app/finders/themes/known_locations.rb
 - app/finders/themes/urls_in_404_page.rb
 - app/finders/themes/urls_in_homepage.rb
+- app/finders/themes/wp_json_api.rb
 - app/finders/timthumb_version.rb
 - app/finders/timthumb_version/bad_request.rb
 - app/finders/timthumbs.rb
@@ -273,35 +508,61 @@ files:
 - app/finders/wp_version/readme.rb
 - app/finders/wp_version/rss_generator.rb
 - app/finders/wp_version/unique_fingerprinting.rb
+- app/formatters/cli.rb
+- app/formatters/cli_no_color.rb
+- app/formatters/cli_no_colour.rb
+- app/formatters/json.rb
+- app/formatters/jsonl.rb
+- app/formatters/sarif.rb
 - app/models.rb
+- app/models/backup_folder.rb
 - app/models/config_backup.rb
 - app/models/db_export.rb
+- app/models/fantastico_fileslist.rb
+- app/models/headers.rb
 - app/models/interesting_finding.rb
 - app/models/media.rb
 - app/models/plugin.rb
+- app/models/robots_txt.rb
+- app/models/search_replace_db_2.rb
 - app/models/theme.rb
 - app/models/timthumb.rb
+- app/models/user.rb
+- app/models/version.rb
 - app/models/wp_item.rb
+- app/models/wp_item/wordpress_org_data.rb
 - app/models/wp_version.rb
 - app/models/xml_rpc.rb
+- app/user_agents.txt
 - app/views/cli/core/banner.erb
 - app/views/cli/core/db_update_finished.erb
 - app/views/cli/core/db_update_started.erb
+- app/views/cli/core/finished.erb
+- app/views/cli/core/help.erb
 - app/views/cli/core/not_fully_configured.erb
+- app/views/cli/core/started.erb
 - app/views/cli/core/version.erb
+- app/views/cli/enumeration/backup_folders.erb
 - app/views/cli/enumeration/config_backups.erb
 - app/views/cli/enumeration/db_exports.erb
 - app/views/cli/enumeration/medias.erb
+- app/views/cli/enumeration/plugin.erb
 - app/views/cli/enumeration/plugins.erb
+- app/views/cli/enumeration/theme.erb
 - app/views/cli/enumeration/themes.erb
 - app/views/cli/enumeration/timthumbs.erb
+- app/views/cli/enumeration/user.erb
 - app/views/cli/enumeration/users.erb
 - app/views/cli/finding.erb
 - app/views/cli/info.erb
+- app/views/cli/interesting_findings/_array.erb
+- app/views/cli/interesting_findings/findings.erb
 - app/views/cli/main_theme/theme.erb
 - app/views/cli/notice.erb
 - app/views/cli/password_attack/users.erb
+- app/views/cli/scan_aborted.erb
 - app/views/cli/theme.erb
+- app/views/cli/update_aborted.erb
 - app/views/cli/usage.erb
 - app/views/cli/vuln_api/status.erb
 - app/views/cli/vulnerability.erb
@@ -310,25 +571,70 @@ files:
 - app/views/json/core/banner.erb
 - app/views/json/core/db_update_finished.erb
 - app/views/json/core/db_update_started.erb
+- app/views/json/core/finished.erb
+- app/views/json/core/help.erb
 - app/views/json/core/not_fully_configured.erb
+- app/views/json/core/started.erb
 - app/views/json/core/version.erb
+- app/views/json/enumeration/backup_folders.erb
 - app/views/json/enumeration/config_backups.erb
 - app/views/json/enumeration/db_exports.erb
 - app/views/json/enumeration/medias.erb
+- app/views/json/enumeration/plugin.erb
 - app/views/json/enumeration/plugins.erb
+- app/views/json/enumeration/theme.erb
 - app/views/json/enumeration/themes.erb
 - app/views/json/enumeration/timthumbs.erb
+- app/views/json/enumeration/user.erb
 - app/views/json/enumeration/users.erb
 - app/views/json/finding.erb
+- app/views/json/interesting_findings/findings.erb
 - app/views/json/main_theme/theme.erb
+- app/views/json/notice.erb
 - app/views/json/password_attack/users.erb
+- app/views/json/scan_aborted.erb
 - app/views/json/theme.erb
+- app/views/json/update_aborted.erb
 - app/views/json/vuln_api/status.erb
 - app/views/json/wp_item.erb
 - app/views/json/wp_version/version.erb
 - bin/wpscan
+- lib/opt_parse_validator.rb
+- lib/opt_parse_validator/config_files_loader_merger.rb
+- lib/opt_parse_validator/config_files_loader_merger/base.rb
+- lib/opt_parse_validator/config_files_loader_merger/json.rb
+- lib/opt_parse_validator/config_files_loader_merger/yml.rb
+- lib/opt_parse_validator/errors.rb
+- lib/opt_parse_validator/hacks.rb
+- lib/opt_parse_validator/opts.rb
+- lib/opt_parse_validator/opts/alias.rb
+- lib/opt_parse_validator/opts/array.rb
+- lib/opt_parse_validator/opts/base.rb
+- lib/opt_parse_validator/opts/boolean.rb
+- lib/opt_parse_validator/opts/choice.rb
+- lib/opt_parse_validator/opts/credentials.rb
+- lib/opt_parse_validator/opts/directory_path.rb
+- lib/opt_parse_validator/opts/file_path.rb
+- lib/opt_parse_validator/opts/headers.rb
+- lib/opt_parse_validator/opts/integer.rb
+- lib/opt_parse_validator/opts/integer_range.rb
+- lib/opt_parse_validator/opts/multi_choices.rb
+- lib/opt_parse_validator/opts/path.rb
+- lib/opt_parse_validator/opts/positive_integer.rb
+- lib/opt_parse_validator/opts/proxy.rb
+- lib/opt_parse_validator/opts/regexp.rb
+- lib/opt_parse_validator/opts/smart_list.rb
+- lib/opt_parse_validator/opts/string.rb
+- lib/opt_parse_validator/opts/uri.rb
+- lib/opt_parse_validator/opts/url.rb
+- lib/opt_parse_validator/version.rb
 - lib/wpscan.rb
 - lib/wpscan/browser.rb
+- lib/wpscan/browser/actions.rb
+- lib/wpscan/browser/options.rb
+- lib/wpscan/browser_authenticator.rb
+- lib/wpscan/cache/file_store.rb
+- lib/wpscan/cache/typhoeus.rb
 - lib/wpscan/controller.rb
 - lib/wpscan/controllers.rb
 - lib/wpscan/db.rb
@@ -350,11 +656,16 @@ files:
 - lib/wpscan/errors.rb
 - lib/wpscan/errors/enumeration.rb
 - lib/wpscan/errors/http.rb
+- lib/wpscan/errors/saml.rb
+- lib/wpscan/errors/scan.rb
 - lib/wpscan/errors/update.rb
 - lib/wpscan/errors/vuln_api.rb
 - lib/wpscan/errors/wordpress.rb
+- lib/wpscan/errors/wp_auth.rb
 - lib/wpscan/errors/xmlrpc.rb
+- lib/wpscan/exit_code.rb
 - lib/wpscan/finders.rb
+- lib/wpscan/finders/base_finders.rb
 - lib/wpscan/finders/dynamic_finder/finder.rb
 - lib/wpscan/finders/dynamic_finder/version/body_pattern.rb
 - lib/wpscan/finders/dynamic_finder/version/comment.rb
@@ -367,22 +678,54 @@ files:
 - lib/wpscan/finders/dynamic_finder/wp_item_version.rb
 - lib/wpscan/finders/dynamic_finder/wp_items/finder.rb
 - lib/wpscan/finders/dynamic_finder/wp_version.rb
+- lib/wpscan/finders/finder.rb
+- lib/wpscan/finders/finder/breadth_first_dictionary_attack.rb
+- lib/wpscan/finders/finder/enumerator.rb
+- lib/wpscan/finders/finder/fingerprinter.rb
+- lib/wpscan/finders/finder/smart_url_checker.rb
+- lib/wpscan/finders/finder/smart_url_checker/findings.rb
 - lib/wpscan/finders/finder/wp_version/smart_url_checker.rb
+- lib/wpscan/finders/finding.rb
+- lib/wpscan/finders/findings.rb
+- lib/wpscan/finders/independent_finder.rb
+- lib/wpscan/finders/independent_finders.rb
+- lib/wpscan/finders/same_type_finder.rb
+- lib/wpscan/finders/same_type_finders.rb
+- lib/wpscan/finders/unique_finder.rb
+- lib/wpscan/finders/unique_finders.rb
+- lib/wpscan/formatter.rb
+- lib/wpscan/formatter/buffer.rb
 - lib/wpscan/helper.rb
+- lib/wpscan/http_status_tracking.rb
+- lib/wpscan/numeric.rb
 - lib/wpscan/parsed_cli.rb
+- lib/wpscan/progressbar_null_output.rb
+- lib/wpscan/public_suffix/domain.rb
 - lib/wpscan/references.rb
+- lib/wpscan/scan.rb
 - lib/wpscan/target.rb
+- lib/wpscan/target/hashes.rb
+- lib/wpscan/target/platform.rb
+- lib/wpscan/target/platform/php.rb
 - lib/wpscan/target/platform/wordpress.rb
 - lib/wpscan/target/platform/wordpress/custom_directories.rb
+- lib/wpscan/target/scope.rb
+- lib/wpscan/target/server.rb
+- lib/wpscan/target/server/apache.rb
+- lib/wpscan/target/server/generic.rb
+- lib/wpscan/target/server/iis.rb
+- lib/wpscan/target/server/nginx.rb
+- lib/wpscan/typhoeus/hydra.rb
 - lib/wpscan/typhoeus/response.rb
 - lib/wpscan/version.rb
 - lib/wpscan/vulnerability.rb
+- lib/wpscan/vulnerability_filter.rb
 - lib/wpscan/vulnerable.rb
+- lib/wpscan/web_site.rb
 homepage: https://wpscan.com/wordpress-security-scanner
 licenses:
 - Dual
 metadata: {}
-post_install_message:
 rdoc_options: []
 require_paths:
 - lib
@@ -390,15 +733,14 @@ required_ruby_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
     - !ruby/object:Gem::Version
-      version: '3.0'
+      version: '3.3'
 required_rubygems_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.2.33
-signing_key:
+rubygems_version: 4.0.10
 specification_version: 4
 summary: WPScan - WordPress Vulnerability Scanner
 test_files: []