1
# frozen_string_literal: true
2

3
module WPScan
4
  module Finders
5
    module Passwords
6
      # Password attack against the wp-login.php
7
      class WpLogin < CMSScanner::Finders::Finder
8
        include CMSScanner::Finders::Finder::BreadthFirstDictionaryAttack
9

10
        def login_request(username, password)
11
          target.login_request(username, password)
12
        end
13

14
        def valid_credentials?(response)
15
          response.code == 302 &&
16
            Array(response.headers['Set-Cookie'])&.any? { |cookie| cookie =~ /wordpress_logged_in_/i }
17
        end
18

19
        def errored_response?(response)
20
          response.code != 200 && response.body !~ /login_error/i
21
        end
22
      end
23
    end
24
  end
25
end
26

27