50 lines
1.3 KiB
YAML
50 lines
1.3 KiB
YAML
id: wordpress-header-footer
|
|
|
|
info:
|
|
name: Head, Footer and Post Injections Detection
|
|
author: ricardomaia
|
|
severity: info
|
|
reference:
|
|
- https://wordpress.org/plugins/header-footer/
|
|
metadata:
|
|
plugin_namespace: header-footer
|
|
wpscan: https://wpscan.com/plugin/header-footer
|
|
tags: tech,wordpress,wp-plugin,top-200
|
|
|
|
http:
|
|
- method: GET
|
|
|
|
path:
|
|
- "{{BaseURL}}/wp-content/plugins/header-footer/readme.txt"
|
|
|
|
payloads:
|
|
last_version: helpers/wordpress/plugins/header-footer.txt
|
|
|
|
extractors:
|
|
- type: regex
|
|
part: body
|
|
internal: true
|
|
name: internal_detected_version
|
|
group: 1
|
|
regex:
|
|
- '(?i)Stable.tag:\s?([\w.]+)'
|
|
|
|
- type: regex
|
|
part: body
|
|
name: detected_version
|
|
group: 1
|
|
regex:
|
|
- '(?i)Stable.tag:\s?([\w.]+)'
|
|
|
|
matchers-condition: or
|
|
matchers:
|
|
- type: dsl
|
|
name: "outdated_version"
|
|
dsl:
|
|
- compare_versions(internal_detected_version, concat("< ", last_version))
|
|
|
|
- type: regex
|
|
part: body
|
|
regex:
|
|
- '(?i)Stable.tag:\s?([\w.]+)'
|
|
# digest: 4a0a004730450220789e45edef65b60015994c64f9dfae989b096af2e89d2a166a9d2de9697c65fd022100c820c6f577f2ba066c316c7e0232a84e19c84f9cc07254941a94968d46102447:922c64590222798bb761d5b6d8e72950 |