1# frozen_string_literal: true 2 3module WPScan 4 module Finders 5 module Users 6 # The YOAST SEO plugin has an author-sitemap.xml which can leak usernames 7 # See https://github.com/wpscanteam/wpscan/issues/1228 8 class YoastSeoAuthorSitemap < AuthorSitemap 9 # @return [ String ] The URL of the author-sitemap 10 def sitemap_url 11 @sitemap_url ||= target.url('author-sitemap.xml') 12 end 13 end 14 end 15 end 16end 17 18
