1
# frozen_string_literal: true
2

3
module WPScan
4
  module Finders
5
    module InterestingFindings
6
      # Tmm DB Migrate finder
7
      class TmmDbMigrate < CMSScanner::Finders::Finder
8
        # @return [ InterestingFinding ]
9
        def aggressive(_opts = {})
10
          path = 'wp-content/uploads/tmm_db_migrate/tmm_db_migrate.zip'
11
          url  = target.url(path)
12
          res  = browser.forge_request(url, target.head_or_get_request_params).run
13

14
          return unless res.code == 200 && res.headers['Content-Type'] =~ %r{\Aapplication/zip}i
15

16
          Model::TmmDbMigrate.new(url, confidence: 100, found_by: DIRECT_ACCESS)
17
        end
18
      end
19
    end
20
  end
21
end
22

23