Changeset 2540542

Timestamp:

06/01/2021 08:08:14 AM (5 years ago)

Author:

ethicalhack3r

Message:

New 1.15.2 version release

Location:

wpscan

Files:

• tags/1.15.2 (copied) (copied from wpscan/trunk)
• tags/1.15.2/app/Checks/System.php (modified) (2 diffs)
• tags/1.15.2/app/Plugin.php (modified) (2 diffs)
• tags/1.15.2/app/Report.php (modified) (5 diffs)
• tags/1.15.2/app/Settings.php (modified) (3 diffs)
• tags/1.15.2/app/Summary.php (modified) (2 diffs)
• tags/1.15.2/app/ignoreVulnerabilities.php (modified) (1 diff)
• tags/1.15.2/assets/css/style.css (modified) (2 diffs)
• tags/1.15.2/assets/js/download-report.js (modified) (6 diffs)
• tags/1.15.2/readme.txt (modified) (2 diffs)
• tags/1.15.2/security-checks/debuglog-files/check.php (modified) (1 diff)
• tags/1.15.2/views/report.php (modified) (3 diffs)
• tags/1.15.2/wpscan.php (modified) (1 diff)
• trunk/app/Checks/System.php (modified) (2 diffs)
• trunk/app/Plugin.php (modified) (2 diffs)
• trunk/app/Report.php (modified) (5 diffs)
• trunk/app/Settings.php (modified) (3 diffs)
• trunk/app/Summary.php (modified) (2 diffs)
• trunk/app/ignoreVulnerabilities.php (modified) (1 diff)
• trunk/assets/css/style.css (modified) (2 diffs)
• trunk/assets/js/download-report.js (modified) (6 diffs)
• trunk/readme.txt (modified) (2 diffs)
• trunk/security-checks/debuglog-files/check.php (modified) (1 diff)
• trunk/views/report.php (modified) (3 diffs)
• trunk/wpscan.php (modified) (1 diff)

wpscan/tags/1.15.2/app/Checks/System.php

@@ -25 +25 @@
     // Current running events.
     public $current_running = '';
+
     /**
      * A list of registered checks.
@@ -156 +157 @@
                 echo "<div class='notice notice-error'><p>$msg</p></div>";
             }
-        }
-    }
-
-    /**
-     * List vulnerabilities in the report.
-     *
-     * @param object $check - The check instance.
-     *
-     * @access public
-     * @return string
-     * @since 1.0.0
-     *
-     */
-    public function list_check_vulnerabilities( $instance ) {
-        $vulnerabilities = $instance->get_vulnerabilities();
-        $count           = $instance->get_vulnerabilities_count();
-        $ignored         = $this->parent->get_ignored_vulnerabilities();
-
-        $not_checked_text = __( 'Not checked yet. Click the Run button to run a scan', 'wpscan' );
-
-        if ( ! isset( $vulnerabilities ) ) {
-            echo esc_html( $not_checked_text );
-        } elseif ( empty( $vulnerabilities ) || 0 === $count ) {
-            echo esc_html( $instance->success_message() );
-        } else {
-            $list = array();
-
-            foreach ( $vulnerabilities as $item ) {
-                if ( in_array( $item['id'], $ignored, true ) ) {
-                    continue;
-                }
-
-                $html  = "<div class='vulnerability'>";
-                $html .= "<span class='vulnerability-severity'>";
-                $html .= "<span class='wpscan-" . esc_attr( $item['severity'] ) . "'>" . esc_html( $item['severity'] ) ."</span>";
-                $html .= '</span>';
-                $html .= "<div class='vulnerability-title'>" . wp_kses( $item['title'], array( 'a' => array( 'href' => array() ) ) ) . '</div>';
-                $html .= "<div class='vulnerability-remediation'> <a href='" . $item['remediation_url'] . "' target='_blank'>Click here for further info</a></div>";
-                $html .= '</div>';
-                $list[] = $html;
-            }
-
-            echo join( '<br>', $list );
-        }
-    }
-
-    /**
-     * Return vulnerabilities in the report.
-     *
-     * @param object $check - The check instance.
-     *
-     * @access public
-     * @return string
-     * @since 1.14.4
-     *
-     */
-    public function get_check_vulnerabilities( $instance ) {
-        $vulnerabilities = $instance->get_vulnerabilities();
-        $count           = $instance->get_vulnerabilities_count();
-        $ignored         = $this->parent->get_ignored_vulnerabilities();
-
-        $not_checked_text = __( 'Not checked yet. Click the Run button to run a scan', 'wpscan' );
-
-        if ( ! isset( $vulnerabilities ) ) {
-            return esc_html( $not_checked_text );
-        } elseif ( empty( $vulnerabilities ) || 0 === $count ) {
-            return esc_html( $instance->success_message() );
-        } else {
-            $list = array();
-
-            foreach ( $vulnerabilities as $item ) {
-                if ( in_array( $item['id'], $ignored, true ) ) {
-                    continue;
-                }
-
-                $html   = "<div class='vulnerability'>";
-                $html  .= "<div class='vulnerability-severity'>";
-                $html  .= "<span class='wpscan-" . esc_attr( $item['severity'] ) . "'>" . esc_html( $item['severity'] ) . '</span>';
-                $html  .= '</div>';
-                $html  .= "<div class='vulnerability-title'>" . wp_kses( $item['title'], array( 'a' => array( 'href' => array() ) ) ) . '</div>';
-                $html  .= '</div>';
-                $list[] = $html;
-            }
-
-            return join( '<br>', $list );
         }
     }

wpscan/tags/1.15.2/app/Plugin.php

@@ -15 +15 @@
 class Plugin {
     // Settings.
-    public $OPT_API_TOKEN = 'wpscan_api_token';
+    public $OPT_API_TOKEN         = 'wpscan_api_token';
     public $OPT_SCANNING_INTERVAL = 'wpscan_scanning_interval';
-    public $OPT_SCANNING_TIME = 'wpscan_scanning_time';
-    public $OPT_IGNORE_ITEMS = 'wpscan_ignore_items';
+    public $OPT_SCANNING_TIME     = 'wpscan_scanning_time';
+    public $OPT_IGNORE_ITEMS      = 'wpscan_ignore_items';
+    public $OPT_DISABLE_CHECKS    = 'wpscan_disable_security_checks';
 
     // Account.
@@ -555 +556 @@
 
         // Security checks.
-        $this->report['security-checks'] = array();
-
-        foreach ( $this->classes['checks/system']->checks as $id => $data ) {
-            $data['instance']->perform();
-            $this->report['security-checks'][ $id ]['vulnerabilities'] = array();
-
-            if ( $data['instance']->vulnerabilities ) {
-                $this->report['security-checks'][ $id ]['vulnerabilities'] = $data['instance']->get_vulnerabilities();
-
-                $this->maybe_fire_issue_found_action( 'security-check', $id, $this->report['security-checks'][ $id ] );
+        if ( get_option( $this->OPT_DISABLE_CHECKS, array() ) !== '1' ) {
+            $this->report['security-checks'] = array();
+
+            foreach ( $this->classes['checks/system']->checks as $id => $data ) {
+                $data['instance']->perform();
+                $this->report['security-checks'][ $id ]['vulnerabilities'] = array();
+
+                if ( $data['instance']->vulnerabilities ) {
+                    $this->report['security-checks'][ $id ]['vulnerabilities'] = $data['instance']->get_vulnerabilities();
+
+                    $this->maybe_fire_issue_found_action( 'security-check', $id, $this->report['security-checks'][ $id ] );
+                }
             }
-        }
+      }
 
         // Caching.

wpscan/tags/1.15.2/app/Report.php

@@ -65 +65 @@
 
     /**
+     * Get vulnerability status based on fixed_in
+     *
+     * @since 1.15.2
+     * @access public
+     * @return string
+     */
+    public function status( $vulnerability ) {
+        return empty( $vulnerability->fixed_in )
+            ? __( 'We are not aware of a fix for this vulnerability.', 'wpscan' )
+            : sprintf( __( 'This vulnerability was fixed in version %s. We recommend that you update as soon as possible.', 'wpscan' ), esc_html( $vulnerability->fixed_in ) );
+    }
+
+    /**
+     * HTML markup for the vulnerability details
+     *
+     * @since 1.15.2
+     * @access public
+     * @return string
+     */
+    public function vulnerability_output( $vulnerability ) {
+    $html  = '<div class="vulnerability">';
+        $html .= '<p class="vulnerability-title"><b>' . esc_html( $vulnerability->title ) . '</b></p>';
+        $html .= '<p class="vulnerability-status">' . $this->status( $vulnerability ) . '</p>';
+        $html .= $this->vulnerability_severity( $vulnerability );
+        $html .= '<br /><p class="vulnerability-link"><a href="' . esc_url( 'https://wpscan.com/vulnerability/' . $vulnerability->id ) . '" target="_blank">Click here for further details</a></p>';
+        $html .= '</div>';
+
+        return $html;
+    }
+
+    /**
      * List vulnerabilities on screen
      *
@@ -100 +131 @@
             usort( $report['vulnerabilities'], array( 'self', 'sort_vulnerabilities' ) );
 
-            foreach ( $report['vulnerabilities'] as $item ) {
-                $id = 'security-checks' === $type ? $item['id'] : $item->id;
+            foreach ( $report['vulnerabilities'] as $vulnerability ) {
+                $id = 'security-checks' === $type ? $vulnerability['id'] : $vulnerability->id;
 
                 if ( in_array( $id, $ignored, true ) ) {
@@ -107 +138 @@
                 }
 
-                $html  = '<div class="vulnerability">';
-                $html .= $this->vulnerability_severity( $item );
-                $html .= '<a href="' . esc_url( 'https://wpscan.com/vulnerability/' . $item->id ) . '" target="_blank">';
-                $html .= $this->parent->get_sanitized_vulnerability_title( $item );
-                $html .= '</a>';
+                $list[] = $this->vulnerability_output( $vulnerability );
+            }
+
+            echo empty( $list ) ? $null_text : join( '<br>', $list );
+
+        } else {
+            echo esc_html( $null_text );
+        }
+    }
+
+    /**
+     * List security check vulnerabilities in the report.
+     * This should be merged with the list_api_vulnerabilities() function,
+     * in the future, if anyone can figure out how...
+     *
+     * @param object $check - The check instance.
+     *
+     * @access public
+     * @return string
+     * @since 1.0.0
+     *
+     */
+    public function list_security_check_vulnerabilities( $instance ) {
+        $vulnerabilities = $instance->get_vulnerabilities();
+        $count           = $instance->get_vulnerabilities_count();
+        $ignored         = $this->parent->get_ignored_vulnerabilities();
+
+        $not_checked_text = __( 'Not checked yet. Click the Run button to run a scan', 'wpscan' );
+
+        if ( ! isset( $vulnerabilities ) ) {
+            echo esc_html( $not_checked_text );
+        } elseif ( empty( $vulnerabilities ) || 0 === $count ) {
+            echo esc_html( $instance->success_message() );
+        } else {
+            $list = array();
+
+            foreach ( $vulnerabilities as $vulnerability ) {
+                if ( in_array( $vulnerability['id'], $ignored, true ) ) {
+                    continue;
+                }
+
+                $html  = "<div class='vulnerability'>";
+                $html .= "<p class='vulnerability-title'>" . wp_kses( $vulnerability['title'], array( 'a' => array( 'href' => array() ) ) ) . '</p><br />';
+                $html .= "<p class='vulnerability-severity'>";
+                $html .= "<span class='wpscan-" . esc_attr( $vulnerability['severity'] ) . "'>" . esc_html( $vulnerability['severity'] ) ." Severity</span>";
+                $html .= '</p>';
+                $html .= "<br /><br /><p class='vulnerability-link'><a href='" . esc_url( $vulnerability['remediation_url'] ) . "' target='_blank'>Click here for further details</a></p>";
                 $html .= '</div>';
 
@@ -117 +190 @@
             }
 
-            echo empty( $list ) ? $null_text : join( '<br>', $list );
-
-        } else {
-            echo esc_html( $null_text );
-        }
-    }
+            echo join( '<br>', $list );
+        }
+    }
+
 
     /**
@@ -156 +227 @@
         if ( isset( $vulnerability->cvss->severity ) ) {
             $severity = $vulnerability->cvss->severity;
-            $html    .= "<span class='wpscan-" . esc_attr( $severity ) . "'>" . esc_html( $severity ) . '</span>';
+            $html    .= "<span class='wpscan-" . esc_attr( $severity ) . "'>" . esc_html( $severity ) . ' Severity</span>';
         }
 

wpscan/tags/1.15.2/app/Settings.php

@@ -83 +83 @@
         register_setting( $this->page, $this->parent->OPT_SCANNING_INTERVAL, 'sanitize_text_field' );
         register_setting( $this->page, $this->parent->OPT_SCANNING_TIME, 'sanitize_text_field' );
+        register_setting( $this->page, $this->parent->OPT_DISABLE_CHECKS, array( 'type' => 'boolean', 'default' => '0' ) );
 
         $section = $this->page . '_section';
@@ -113 +114 @@
             __( 'Scanning Time', 'wpscan' ),
             array( $this, 'field_scanning_time' ),
+            $this->page,
+            $section
+        );
+
+        add_settings_field(
+            $this->parent->OPT_DISABLE_CHECKS,
+            __( 'Disable Security Checks', 'wpscan' ),
+            array( $this, 'field_disable_security_checks' ),
             $this->page,
             $section
@@ -323 +332 @@
 
         echo '</p><br/>';
+    }
+    /**
+     * Disable security checks field
+     *
+     * @since 1.15.2
+     * @access public
+     * @return string
+     */
+    public function field_disable_security_checks() {
+        $opt     = $this->parent->OPT_DISABLE_CHECKS;
+
+        $value   = get_option( $opt, array() );
+        $checked = $value === '1' ? 'checked' : null;
+
+        echo "<input name='{$opt}' type='checkbox' $checked value='1' >";
     }
 

wpscan/tags/1.15.2/app/Summary.php

@@ -26 +26 @@
         add_action( 'admin_init', array( $this, 'add_meta_box_summary' ) );
         add_action( 'wp_ajax_wpscan_check_now', array( $this, 'ajax_check_now' ) );
-        add_action( 'wp_ajax_wpscan_security_check_now', array( $this, 'ajax_security_check_now' ) );
+
+        if ( get_option( $this->parent->OPT_DISABLE_CHECKS, array() ) !== '1' ) {
+          add_action( 'wp_ajax_wpscan_security_check_now', array( $this, 'ajax_security_check_now' ) );
+        }
+
         add_action( 'wp_ajax_' . $this->parent->WPSCAN_TRANSIENT_CRON, array( $this, 'ajax_doing_cron' ) );
     }
@@ -162 +166 @@
 
     /**
-     * Ajax scurity check now
+     * Ajax security check now
      *
      * @return void

wpscan/tags/1.15.2/app/ignoreVulnerabilities.php

@@ -128 +128 @@
             $this->list_vulnerabilities_to_ignore( 'themes', $this->parent->get_theme_slug( $name, $details ) );
         }
-
-        foreach ( $this->parent->classes['checks/system']->checks as $id => $data ) {
-            $this->list_vulnerabilities_to_ignore( 'security-checks', $id );
+    
+    if ( get_option( $this->parent->OPT_DISABLE_CHECKS, array() ) !== '1' ) {
+            foreach ( $this->parent->classes['checks/system']->checks as $id => $data ) {
+                $this->list_vulnerabilities_to_ignore( 'security-checks', $id );
+            }
         }
     }

wpscan/tags/1.15.2/assets/css/style.css

@@ -162 +162 @@
 .vulnerability-severity {
   float: left;
-  min-width: 60px;
-  margin-right: 20px;
-}
-
-.vulnerability-title {
+  min-width: 100px;
+}
+
+.vulnerability-title .vulnerability-status .vulnerability-link {
   float: left;
 }
@@ -176 +175 @@
   border-radius: 3px;
   font-size: 11px;
-  margin: 6px 0px 0px 0px;
   line-height: 19px;
-  min-width: 60px;
+  min-width: 100px;
   color: #4e645a;
   background: #c6e1d5;

wpscan/tags/1.15.2/assets/js/download-report.js

@@ -361 +361 @@
     const topTableBorder = is_wordpress_section ? 'WPTableLine' : 'tableLine';
 
-    // name
-
+    // Name
     table.table.body[1].push({
       text: 'Name',
@@ -370 +369 @@
     table.table.widths.push(149);
 
-    // version
+    // Version
     if (!is_security_checks) {
       table.table.body[1].push({
@@ -408 +407 @@
         let row = [];
 
-        // Item title
-        let itemTitle = $(this).find('.plugin-title strong').text().trim();
-
+        // Item name
+        let itemTitle = is_wordpress_section ? 'WordPress' : $(this).find('.plugin-title strong').text().trim();
+        
         if ($(this).find('.plugin-title .item-closed').length) {
           itemTitle =
@@ -426 +425 @@
 
         // Item version
+        let itemVersion = is_wordpress_section ? $(this).find('#wordpress-version').text().trim() : $(this).find('.plugin-title .item-version span').text().trim();
+
         if (!is_security_checks) {
           row.push({
-            text: $(this)
-              .find('.plugin-title .item-version span')
-              .text()
-              .trim(),
+            text: itemVersion,
             style: 'resTable',
             borderColor,
@@ -451 +449 @@
             .each(function () {
               let item = $(this).clone();
-              let linkText =
-                item.find('.vulnerability-severity span').text().trim() + ' - ';
-              item.find('.vulnerability-severity span').remove();
-              linkText = linkText + item.text().trim();
-              linkText = linkText.charAt(0).toUpperCase() + linkText.slice(1);
-
-              col.stack.push({
-                text: linkText,
-                link: $(this).attr('href'),
-                style: 'resTable',
-                lineHeight: 2,
-                borderColor,
-              });
+              let title     = item.find('.vulnerability-title').text().trim();
+              let status    = item.find('.vulnerability-status').text().trim();
+              let severity  = item.find('.vulnerability-severity span').text().trim();
+              let link_text = item.find('.vulnerability-link').text().trim();
+              let link_href = item.find('.vulnerability-link a').attr('href');
+
+              let vulnerability_text = [
+                { text: title, style: 'resTable' },
+                { text: status, style: 'resTable' },
+                { text: severity.charAt(0).toUpperCase() + severity.slice(1), style: 'resTable' },
+                { text: link_text, link: link_href, style: 'resTable' }
+              ]
+
+              col.stack.push( vulnerability_text );
             });
 
@@ -479 +478 @@
       });
 
-    // push the table
+    // Push the table
     is_wordpress_section
       ? wpscanReport.content.push(wordpressTable)

wpscan/tags/1.15.2/readme.txt

@@ -4 +4 @@
 Requires at least: 3.4
 Tested up to: 5.6
-Stable tag: 1.15.1
+Stable tag: 1.15.2
 Requires PHP: 5.5
 License: GPLv3
@@ -90 +90 @@
 
 == Changelog ==
+
+= 1.15.2 =
+* Improve HTML and PDF report output
+* Disable security checks setting
+* Some refactoring
 
 = 1.15.1 =

wpscan/tags/1.15.2/security-checks/debuglog-files/check.php

@@ -69 +69 @@
 
             if ( 200 === $code ) {
-                $this->add_vulnerability( __( 'A publicly accessible debug.log file was found in', 'wpscan' ) . " <a href='$url' target='_blank'>$url</a>.", 'high', sanitize_title( $file ), 'https://blog.wpscan.com/2021/03/18/wordpress-debug-log-files.html' );
+                $this->add_vulnerability( __( 'A publicly accessible debug.log file was found in', 'wpscan' ) . " <a href='$url' target='_blank'>$url</a>", 'high', sanitize_title( $file ), 'https://blog.wpscan.com/2021/03/18/wordpress-debug-log-files.html' );
             }
         }

wpscan/tags/1.15.2/views/report.php

@@ -51 +51 @@
                 <th scope="row" class="check-column" style="text-align: center">
                   <?php echo $this->get_status( 'wordpress', get_bloginfo( 'version' ) ) ?></th>
-                <td class="plugin-title column-primary">
-                  <strong>WordPress</strong> 
-                  <span class='item-version'>
-                    <?php echo sprintf( __( 'Version <span>%s</span>', 'wpscan' ), get_bloginfo( 'version' ) ) ?>
-                  </span>
+                <td class="wordpress-title column-primary">
+                  <strong>WordPress <span id="wordpress-version"><?php echo get_bloginfo( 'version' ) ?></span></strong> 
                 </td>
                 <td class="vulnerabilities">
@@ -94 +91 @@
                   
                   <td class="plugin-title column-primary">
-                    <strong><?php echo esc_html($details['Name']) ?></strong>
+                    <strong><?php echo esc_html( $details['Name'] ) ?></strong>
                     <span class='item-version'>
                       <?php echo sprintf( __( 'Version <span>%s</span>', 'wpscan' ), esc_html($details['Version']) ) ?>
@@ -163 +160 @@
           </div>
 
-          <div class="wpscan-report-section security-checks">
-            <h3><?php _e('Security Checks', 'wpscan') ?></h3>
-
-            <table class="wp-list-table widefat striped plugins">
-                <thead>
-                    <tr>
-                        <td scope="col" class="manage-column check-column"></td>
-                        <th scope="col" class="manage-column column-name column-primary"><?php _e('Name', 'wpscan') ?></th>
-                        <th scope="col" class="manage-column column-description"><?php _e('Result', 'wpscan') ?></th>
-                        <th scope="col" class="manage-column column-description"><?php _e('Actions', 'wpscan') ?></th>
-                    </tr>
-                </thead>
-                <tbody id="report-themes">
-                    <?php foreach ( $this->parent->classes['checks/system']->checks as $id => $data ) : ?>
-                        <tr>
-                            <th scope="row" class="check-column" style="text-align: center">
-                              <?php echo $this->get_status('security-checks', $id) ?></th>
-                            </th>
-                            <td class="plugin-title column-primary">
-                                <strong title="<?php echo esc_attr($data['instance']->description()) ?>">
-                                  <?php echo esc_html($data['instance']->title()) ?>
-                                </strong>
-                            </td>
-                            <td class="vulnerabilities">
-                              <?php $this->parent->classes['checks/system']->list_check_vulnerabilities( $data['instance'] ) ?>
-                            </td>
-                            <td class="security-check-actions">
-                                <?php $this->parent->classes['checks/system']->list_actions($data['instance']) ?>
-                                <span class="spinner"></span>
-                            </td>
-                        </tr>
-                    <?php endforeach; ?>
-                </tbody>
-            </table>
-          </div>
+          <?php if ( get_option( $this->parent->OPT_DISABLE_CHECKS, array() ) !== '1' ) { ?>
+
+            <div class="wpscan-report-section security-checks">
+              <h3><?php _e('Security Checks', 'wpscan') ?></h3>
+
+              <table class="wp-list-table widefat striped plugins">
+                  <thead>
+                      <tr>
+                          <td scope="col" class="manage-column check-column"></td>
+                          <th scope="col" class="manage-column column-name column-primary"><?php _e('Name', 'wpscan') ?></th>
+                          <th scope="col" class="manage-column column-description"><?php _e('Result', 'wpscan') ?></th>
+                          <th scope="col" class="manage-column column-description"><?php _e('Actions', 'wpscan') ?></th>
+                      </tr>
+                  </thead>
+                  <tbody id="report-themes">
+                      <?php foreach ( $this->parent->classes['checks/system']->checks as $id => $data ) : ?>
+                          <tr>
+                              <th scope="row" class="check-column" style="text-align: center">
+                                <?php echo $this->get_status('security-checks', $id) ?></th>
+                              </th>
+                              <td class="plugin-title column-primary">
+                                  <strong title="<?php echo esc_attr($data['instance']->description()) ?>">
+                                    <?php echo esc_html( $data['instance']->title() ) ?>
+                                  </strong>
+                              </td>
+                              <td class="vulnerabilities">
+                                <?php $this->list_security_check_vulnerabilities( $data['instance'] ) ?>
+                              </td>
+                              <td class="security-check-actions">
+                                  <?php $this->parent->classes['checks/system']->list_actions($data['instance']) ?>
+                                  <span class="spinner"></span>
+                              </td>
+                          </tr>
+                      <?php endforeach; ?>
+                  </tbody>
+              </table>
+            </div>
+
+        <?php } ?>
         
           <?php if ( get_option( $this->parent->OPT_API_TOKEN ) ) { ?>

wpscan/tags/1.15.2/wpscan.php

@@ -4 +4 @@
  * Plugin URI:    http://wordpress.org/plugins/wpscan/
  * Description:   WPScan WordPress Security Scanner. Scans your system for security vulnerabilities listed in the WPScan Vulnerability Database.
- * Version:       1.15.1
+ * Version:       1.15.2
  * Author:        WPScan Team
  * Author URI:    https://wpscan.com/

wpscan/trunk/app/Checks/System.php

@@ -25 +25 @@
     // Current running events.
     public $current_running = '';
+
     /**
      * A list of registered checks.
@@ -156 +157 @@
                 echo "<div class='notice notice-error'><p>$msg</p></div>";
             }
-        }
-    }
-
-    /**
-     * List vulnerabilities in the report.
-     *
-     * @param object $check - The check instance.
-     *
-     * @access public
-     * @return string
-     * @since 1.0.0
-     *
-     */
-    public function list_check_vulnerabilities( $instance ) {
-        $vulnerabilities = $instance->get_vulnerabilities();
-        $count           = $instance->get_vulnerabilities_count();
-        $ignored         = $this->parent->get_ignored_vulnerabilities();
-
-        $not_checked_text = __( 'Not checked yet. Click the Run button to run a scan', 'wpscan' );
-
-        if ( ! isset( $vulnerabilities ) ) {
-            echo esc_html( $not_checked_text );
-        } elseif ( empty( $vulnerabilities ) || 0 === $count ) {
-            echo esc_html( $instance->success_message() );
-        } else {
-            $list = array();
-
-            foreach ( $vulnerabilities as $item ) {
-                if ( in_array( $item['id'], $ignored, true ) ) {
-                    continue;
-                }
-
-                $html  = "<div class='vulnerability'>";
-                $html .= "<span class='vulnerability-severity'>";
-                $html .= "<span class='wpscan-" . esc_attr( $item['severity'] ) . "'>" . esc_html( $item['severity'] ) ."</span>";
-                $html .= '</span>';
-                $html .= "<div class='vulnerability-title'>" . wp_kses( $item['title'], array( 'a' => array( 'href' => array() ) ) ) . '</div>';
-                $html .= "<div class='vulnerability-remediation'> <a href='" . $item['remediation_url'] . "' target='_blank'>Click here for further info</a></div>";
-                $html .= '</div>';
-                $list[] = $html;
-            }
-
-            echo join( '<br>', $list );
-        }
-    }
-
-    /**
-     * Return vulnerabilities in the report.
-     *
-     * @param object $check - The check instance.
-     *
-     * @access public
-     * @return string
-     * @since 1.14.4
-     *
-     */
-    public function get_check_vulnerabilities( $instance ) {
-        $vulnerabilities = $instance->get_vulnerabilities();
-        $count           = $instance->get_vulnerabilities_count();
-        $ignored         = $this->parent->get_ignored_vulnerabilities();
-
-        $not_checked_text = __( 'Not checked yet. Click the Run button to run a scan', 'wpscan' );
-
-        if ( ! isset( $vulnerabilities ) ) {
-            return esc_html( $not_checked_text );
-        } elseif ( empty( $vulnerabilities ) || 0 === $count ) {
-            return esc_html( $instance->success_message() );
-        } else {
-            $list = array();
-
-            foreach ( $vulnerabilities as $item ) {
-                if ( in_array( $item['id'], $ignored, true ) ) {
-                    continue;
-                }
-
-                $html   = "<div class='vulnerability'>";
-                $html  .= "<div class='vulnerability-severity'>";
-                $html  .= "<span class='wpscan-" . esc_attr( $item['severity'] ) . "'>" . esc_html( $item['severity'] ) . '</span>';
-                $html  .= '</div>';
-                $html  .= "<div class='vulnerability-title'>" . wp_kses( $item['title'], array( 'a' => array( 'href' => array() ) ) ) . '</div>';
-                $html  .= '</div>';
-                $list[] = $html;
-            }
-
-            return join( '<br>', $list );
         }
     }

wpscan/trunk/app/Plugin.php

@@ -15 +15 @@
 class Plugin {
     // Settings.
-    public $OPT_API_TOKEN = 'wpscan_api_token';
+    public $OPT_API_TOKEN         = 'wpscan_api_token';
     public $OPT_SCANNING_INTERVAL = 'wpscan_scanning_interval';
-    public $OPT_SCANNING_TIME = 'wpscan_scanning_time';
-    public $OPT_IGNORE_ITEMS = 'wpscan_ignore_items';
+    public $OPT_SCANNING_TIME     = 'wpscan_scanning_time';
+    public $OPT_IGNORE_ITEMS      = 'wpscan_ignore_items';
+    public $OPT_DISABLE_CHECKS    = 'wpscan_disable_security_checks';
 
     // Account.
@@ -555 +556 @@
 
         // Security checks.
-        $this->report['security-checks'] = array();
-
-        foreach ( $this->classes['checks/system']->checks as $id => $data ) {
-            $data['instance']->perform();
-            $this->report['security-checks'][ $id ]['vulnerabilities'] = array();
-
-            if ( $data['instance']->vulnerabilities ) {
-                $this->report['security-checks'][ $id ]['vulnerabilities'] = $data['instance']->get_vulnerabilities();
-
-                $this->maybe_fire_issue_found_action( 'security-check', $id, $this->report['security-checks'][ $id ] );
+        if ( get_option( $this->OPT_DISABLE_CHECKS, array() ) !== '1' ) {
+            $this->report['security-checks'] = array();
+
+            foreach ( $this->classes['checks/system']->checks as $id => $data ) {
+                $data['instance']->perform();
+                $this->report['security-checks'][ $id ]['vulnerabilities'] = array();
+
+                if ( $data['instance']->vulnerabilities ) {
+                    $this->report['security-checks'][ $id ]['vulnerabilities'] = $data['instance']->get_vulnerabilities();
+
+                    $this->maybe_fire_issue_found_action( 'security-check', $id, $this->report['security-checks'][ $id ] );
+                }
             }
-        }
+      }
 
         // Caching.

wpscan/trunk/app/Report.php

@@ -65 +65 @@
 
     /**
+     * Get vulnerability status based on fixed_in
+     *
+     * @since 1.15.2
+     * @access public
+     * @return string
+     */
+    public function status( $vulnerability ) {
+        return empty( $vulnerability->fixed_in )
+            ? __( 'We are not aware of a fix for this vulnerability.', 'wpscan' )
+            : sprintf( __( 'This vulnerability was fixed in version %s. We recommend that you update as soon as possible.', 'wpscan' ), esc_html( $vulnerability->fixed_in ) );
+    }
+
+    /**
+     * HTML markup for the vulnerability details
+     *
+     * @since 1.15.2
+     * @access public
+     * @return string
+     */
+    public function vulnerability_output( $vulnerability ) {
+    $html  = '<div class="vulnerability">';
+        $html .= '<p class="vulnerability-title"><b>' . esc_html( $vulnerability->title ) . '</b></p>';
+        $html .= '<p class="vulnerability-status">' . $this->status( $vulnerability ) . '</p>';
+        $html .= $this->vulnerability_severity( $vulnerability );
+        $html .= '<br /><p class="vulnerability-link"><a href="' . esc_url( 'https://wpscan.com/vulnerability/' . $vulnerability->id ) . '" target="_blank">Click here for further details</a></p>';
+        $html .= '</div>';
+
+        return $html;
+    }
+
+    /**
      * List vulnerabilities on screen
      *
@@ -100 +131 @@
             usort( $report['vulnerabilities'], array( 'self', 'sort_vulnerabilities' ) );
 
-            foreach ( $report['vulnerabilities'] as $item ) {
-                $id = 'security-checks' === $type ? $item['id'] : $item->id;
+            foreach ( $report['vulnerabilities'] as $vulnerability ) {
+                $id = 'security-checks' === $type ? $vulnerability['id'] : $vulnerability->id;
 
                 if ( in_array( $id, $ignored, true ) ) {
@@ -107 +138 @@
                 }
 
-                $html  = '<div class="vulnerability">';
-                $html .= $this->vulnerability_severity( $item );
-                $html .= '<a href="' . esc_url( 'https://wpscan.com/vulnerability/' . $item->id ) . '" target="_blank">';
-                $html .= $this->parent->get_sanitized_vulnerability_title( $item );
-                $html .= '</a>';
+                $list[] = $this->vulnerability_output( $vulnerability );
+            }
+
+            echo empty( $list ) ? $null_text : join( '<br>', $list );
+
+        } else {
+            echo esc_html( $null_text );
+        }
+    }
+
+    /**
+     * List security check vulnerabilities in the report.
+     * This should be merged with the list_api_vulnerabilities() function,
+     * in the future, if anyone can figure out how...
+     *
+     * @param object $check - The check instance.
+     *
+     * @access public
+     * @return string
+     * @since 1.0.0
+     *
+     */
+    public function list_security_check_vulnerabilities( $instance ) {
+        $vulnerabilities = $instance->get_vulnerabilities();
+        $count           = $instance->get_vulnerabilities_count();
+        $ignored         = $this->parent->get_ignored_vulnerabilities();
+
+        $not_checked_text = __( 'Not checked yet. Click the Run button to run a scan', 'wpscan' );
+
+        if ( ! isset( $vulnerabilities ) ) {
+            echo esc_html( $not_checked_text );
+        } elseif ( empty( $vulnerabilities ) || 0 === $count ) {
+            echo esc_html( $instance->success_message() );
+        } else {
+            $list = array();
+
+            foreach ( $vulnerabilities as $vulnerability ) {
+                if ( in_array( $vulnerability['id'], $ignored, true ) ) {
+                    continue;
+                }
+
+                $html  = "<div class='vulnerability'>";
+                $html .= "<p class='vulnerability-title'>" . wp_kses( $vulnerability['title'], array( 'a' => array( 'href' => array() ) ) ) . '</p><br />';
+                $html .= "<p class='vulnerability-severity'>";
+                $html .= "<span class='wpscan-" . esc_attr( $vulnerability['severity'] ) . "'>" . esc_html( $vulnerability['severity'] ) ." Severity</span>";
+                $html .= '</p>';
+                $html .= "<br /><br /><p class='vulnerability-link'><a href='" . esc_url( $vulnerability['remediation_url'] ) . "' target='_blank'>Click here for further details</a></p>";
                 $html .= '</div>';
 
@@ -117 +190 @@
             }
 
-            echo empty( $list ) ? $null_text : join( '<br>', $list );
-
-        } else {
-            echo esc_html( $null_text );
-        }
-    }
+            echo join( '<br>', $list );
+        }
+    }
+
 
     /**
@@ -156 +227 @@
         if ( isset( $vulnerability->cvss->severity ) ) {
             $severity = $vulnerability->cvss->severity;
-            $html    .= "<span class='wpscan-" . esc_attr( $severity ) . "'>" . esc_html( $severity ) . '</span>';
+            $html    .= "<span class='wpscan-" . esc_attr( $severity ) . "'>" . esc_html( $severity ) . ' Severity</span>';
         }
 

wpscan/trunk/app/Settings.php

@@ -83 +83 @@
         register_setting( $this->page, $this->parent->OPT_SCANNING_INTERVAL, 'sanitize_text_field' );
         register_setting( $this->page, $this->parent->OPT_SCANNING_TIME, 'sanitize_text_field' );
+        register_setting( $this->page, $this->parent->OPT_DISABLE_CHECKS, array( 'type' => 'boolean', 'default' => '0' ) );
 
         $section = $this->page . '_section';
@@ -113 +114 @@
             __( 'Scanning Time', 'wpscan' ),
             array( $this, 'field_scanning_time' ),
+            $this->page,
+            $section
+        );
+
+        add_settings_field(
+            $this->parent->OPT_DISABLE_CHECKS,
+            __( 'Disable Security Checks', 'wpscan' ),
+            array( $this, 'field_disable_security_checks' ),
             $this->page,
             $section
@@ -323 +332 @@
 
         echo '</p><br/>';
+    }
+    /**
+     * Disable security checks field
+     *
+     * @since 1.15.2
+     * @access public
+     * @return string
+     */
+    public function field_disable_security_checks() {
+        $opt     = $this->parent->OPT_DISABLE_CHECKS;
+
+        $value   = get_option( $opt, array() );
+        $checked = $value === '1' ? 'checked' : null;
+
+        echo "<input name='{$opt}' type='checkbox' $checked value='1' >";
     }
 

wpscan/trunk/app/Summary.php

@@ -26 +26 @@
         add_action( 'admin_init', array( $this, 'add_meta_box_summary' ) );
         add_action( 'wp_ajax_wpscan_check_now', array( $this, 'ajax_check_now' ) );
-        add_action( 'wp_ajax_wpscan_security_check_now', array( $this, 'ajax_security_check_now' ) );
+
+        if ( get_option( $this->parent->OPT_DISABLE_CHECKS, array() ) !== '1' ) {
+          add_action( 'wp_ajax_wpscan_security_check_now', array( $this, 'ajax_security_check_now' ) );
+        }
+
         add_action( 'wp_ajax_' . $this->parent->WPSCAN_TRANSIENT_CRON, array( $this, 'ajax_doing_cron' ) );
     }
@@ -162 +166 @@
 
     /**
-     * Ajax scurity check now
+     * Ajax security check now
      *
      * @return void

wpscan/trunk/app/ignoreVulnerabilities.php

@@ -128 +128 @@
             $this->list_vulnerabilities_to_ignore( 'themes', $this->parent->get_theme_slug( $name, $details ) );
         }
-
-        foreach ( $this->parent->classes['checks/system']->checks as $id => $data ) {
-            $this->list_vulnerabilities_to_ignore( 'security-checks', $id );
+    
+    if ( get_option( $this->parent->OPT_DISABLE_CHECKS, array() ) !== '1' ) {
+            foreach ( $this->parent->classes['checks/system']->checks as $id => $data ) {
+                $this->list_vulnerabilities_to_ignore( 'security-checks', $id );
+            }
         }
     }

wpscan/trunk/assets/css/style.css

@@ -162 +162 @@
 .vulnerability-severity {
   float: left;
-  min-width: 60px;
-  margin-right: 20px;
-}
-
-.vulnerability-title {
+  min-width: 100px;
+}
+
+.vulnerability-title .vulnerability-status .vulnerability-link {
   float: left;
 }
@@ -176 +175 @@
   border-radius: 3px;
   font-size: 11px;
-  margin: 6px 0px 0px 0px;
   line-height: 19px;
-  min-width: 60px;
+  min-width: 100px;
   color: #4e645a;
   background: #c6e1d5;

wpscan/trunk/assets/js/download-report.js

@@ -361 +361 @@
     const topTableBorder = is_wordpress_section ? 'WPTableLine' : 'tableLine';
 
-    // name
-
+    // Name
     table.table.body[1].push({
       text: 'Name',
@@ -370 +369 @@
     table.table.widths.push(149);
 
-    // version
+    // Version
     if (!is_security_checks) {
       table.table.body[1].push({
@@ -408 +407 @@
         let row = [];
 
-        // Item title
-        let itemTitle = $(this).find('.plugin-title strong').text().trim();
-
+        // Item name
+        let itemTitle = is_wordpress_section ? 'WordPress' : $(this).find('.plugin-title strong').text().trim();
+        
         if ($(this).find('.plugin-title .item-closed').length) {
           itemTitle =
@@ -426 +425 @@
 
         // Item version
+        let itemVersion = is_wordpress_section ? $(this).find('#wordpress-version').text().trim() : $(this).find('.plugin-title .item-version span').text().trim();
+
         if (!is_security_checks) {
           row.push({
-            text: $(this)
-              .find('.plugin-title .item-version span')
-              .text()
-              .trim(),
+            text: itemVersion,
             style: 'resTable',
             borderColor,
@@ -451 +449 @@
             .each(function () {
               let item = $(this).clone();
-              let linkText =
-                item.find('.vulnerability-severity span').text().trim() + ' - ';
-              item.find('.vulnerability-severity span').remove();
-              linkText = linkText + item.text().trim();
-              linkText = linkText.charAt(0).toUpperCase() + linkText.slice(1);
-
-              col.stack.push({
-                text: linkText,
-                link: $(this).attr('href'),
-                style: 'resTable',
-                lineHeight: 2,
-                borderColor,
-              });
+              let title     = item.find('.vulnerability-title').text().trim();
+              let status    = item.find('.vulnerability-status').text().trim();
+              let severity  = item.find('.vulnerability-severity span').text().trim();
+              let link_text = item.find('.vulnerability-link').text().trim();
+              let link_href = item.find('.vulnerability-link a').attr('href');
+
+              let vulnerability_text = [
+                { text: title, style: 'resTable' },
+                { text: status, style: 'resTable' },
+                { text: severity.charAt(0).toUpperCase() + severity.slice(1), style: 'resTable' },
+                { text: link_text, link: link_href, style: 'resTable' }
+              ]
+
+              col.stack.push( vulnerability_text );
             });
 
@@ -479 +478 @@
       });
 
-    // push the table
+    // Push the table
     is_wordpress_section
       ? wpscanReport.content.push(wordpressTable)

wpscan/trunk/readme.txt

@@ -4 +4 @@
 Requires at least: 3.4
 Tested up to: 5.6
-Stable tag: 1.15.1
+Stable tag: 1.15.2
 Requires PHP: 5.5
 License: GPLv3
@@ -90 +90 @@
 
 == Changelog ==
+
+= 1.15.2 =
+* Improve HTML and PDF report output
+* Disable security checks setting
+* Some refactoring
 
 = 1.15.1 =

wpscan/trunk/security-checks/debuglog-files/check.php

@@ -69 +69 @@
 
             if ( 200 === $code ) {
-                $this->add_vulnerability( __( 'A publicly accessible debug.log file was found in', 'wpscan' ) . " <a href='$url' target='_blank'>$url</a>.", 'high', sanitize_title( $file ), 'https://blog.wpscan.com/2021/03/18/wordpress-debug-log-files.html' );
+                $this->add_vulnerability( __( 'A publicly accessible debug.log file was found in', 'wpscan' ) . " <a href='$url' target='_blank'>$url</a>", 'high', sanitize_title( $file ), 'https://blog.wpscan.com/2021/03/18/wordpress-debug-log-files.html' );
             }
         }

wpscan/trunk/views/report.php

@@ -51 +51 @@
                 <th scope="row" class="check-column" style="text-align: center">
                   <?php echo $this->get_status( 'wordpress', get_bloginfo( 'version' ) ) ?></th>
-                <td class="plugin-title column-primary">
-                  <strong>WordPress</strong> 
-                  <span class='item-version'>
-                    <?php echo sprintf( __( 'Version <span>%s</span>', 'wpscan' ), get_bloginfo( 'version' ) ) ?>
-                  </span>
+                <td class="wordpress-title column-primary">
+                  <strong>WordPress <span id="wordpress-version"><?php echo get_bloginfo( 'version' ) ?></span></strong> 
                 </td>
                 <td class="vulnerabilities">
@@ -94 +91 @@
                   
                   <td class="plugin-title column-primary">
-                    <strong><?php echo esc_html($details['Name']) ?></strong>
+                    <strong><?php echo esc_html( $details['Name'] ) ?></strong>
                     <span class='item-version'>
                       <?php echo sprintf( __( 'Version <span>%s</span>', 'wpscan' ), esc_html($details['Version']) ) ?>
@@ -163 +160 @@
           </div>
 
-          <div class="wpscan-report-section security-checks">
-            <h3><?php _e('Security Checks', 'wpscan') ?></h3>
-
-            <table class="wp-list-table widefat striped plugins">
-                <thead>
-                    <tr>
-                        <td scope="col" class="manage-column check-column"></td>
-                        <th scope="col" class="manage-column column-name column-primary"><?php _e('Name', 'wpscan') ?></th>
-                        <th scope="col" class="manage-column column-description"><?php _e('Result', 'wpscan') ?></th>
-                        <th scope="col" class="manage-column column-description"><?php _e('Actions', 'wpscan') ?></th>
-                    </tr>
-                </thead>
-                <tbody id="report-themes">
-                    <?php foreach ( $this->parent->classes['checks/system']->checks as $id => $data ) : ?>
-                        <tr>
-                            <th scope="row" class="check-column" style="text-align: center">
-                              <?php echo $this->get_status('security-checks', $id) ?></th>
-                            </th>
-                            <td class="plugin-title column-primary">
-                                <strong title="<?php echo esc_attr($data['instance']->description()) ?>">
-                                  <?php echo esc_html($data['instance']->title()) ?>
-                                </strong>
-                            </td>
-                            <td class="vulnerabilities">
-                              <?php $this->parent->classes['checks/system']->list_check_vulnerabilities( $data['instance'] ) ?>
-                            </td>
-                            <td class="security-check-actions">
-                                <?php $this->parent->classes['checks/system']->list_actions($data['instance']) ?>
-                                <span class="spinner"></span>
-                            </td>
-                        </tr>
-                    <?php endforeach; ?>
-                </tbody>
-            </table>
-          </div>
+          <?php if ( get_option( $this->parent->OPT_DISABLE_CHECKS, array() ) !== '1' ) { ?>
+
+            <div class="wpscan-report-section security-checks">
+              <h3><?php _e('Security Checks', 'wpscan') ?></h3>
+
+              <table class="wp-list-table widefat striped plugins">
+                  <thead>
+                      <tr>
+                          <td scope="col" class="manage-column check-column"></td>
+                          <th scope="col" class="manage-column column-name column-primary"><?php _e('Name', 'wpscan') ?></th>
+                          <th scope="col" class="manage-column column-description"><?php _e('Result', 'wpscan') ?></th>
+                          <th scope="col" class="manage-column column-description"><?php _e('Actions', 'wpscan') ?></th>
+                      </tr>
+                  </thead>
+                  <tbody id="report-themes">
+                      <?php foreach ( $this->parent->classes['checks/system']->checks as $id => $data ) : ?>
+                          <tr>
+                              <th scope="row" class="check-column" style="text-align: center">
+                                <?php echo $this->get_status('security-checks', $id) ?></th>
+                              </th>
+                              <td class="plugin-title column-primary">
+                                  <strong title="<?php echo esc_attr($data['instance']->description()) ?>">
+                                    <?php echo esc_html( $data['instance']->title() ) ?>
+                                  </strong>
+                              </td>
+                              <td class="vulnerabilities">
+                                <?php $this->list_security_check_vulnerabilities( $data['instance'] ) ?>
+                              </td>
+                              <td class="security-check-actions">
+                                  <?php $this->parent->classes['checks/system']->list_actions($data['instance']) ?>
+                                  <span class="spinner"></span>
+                              </td>
+                          </tr>
+                      <?php endforeach; ?>
+                  </tbody>
+              </table>
+            </div>
+
+        <?php } ?>
         
           <?php if ( get_option( $this->parent->OPT_API_TOKEN ) ) { ?>

wpscan/trunk/wpscan.php

@@ -4 +4 @@
  * Plugin URI:    http://wordpress.org/plugins/wpscan/
  * Description:   WPScan WordPress Security Scanner. Scans your system for security vulnerabilities listed in the WPScan Vulnerability Database.
- * Version:       1.15.1
+ * Version:       1.15.2
  * Author:        WPScan Team
  * Author URI:    https://wpscan.com/