change WPVULNDBID to WPVDB

firefart · firefart · commit f45b89503d3b · 2014-10-03T17:13:18.000+02:00
diff --git a/lib/msf/core/module/reference.rb b/lib/msf/core/module/reference.rb
@@ -108,7 +108,7 @@ def initialize(in_ctx_id = 'Unknown', in_ctx_val = '')
       self.site = "http://www.kb.cert.org/vuls/id/#{in_ctx_val}"
     elsif (in_ctx_id == 'ZDI')
       self.site = "http://www.zerodayinitiative.com/advisories/ZDI-#{in_ctx_val}"
-    elsif (in_ctx_id == 'WPVULNDBID')
+    elsif (in_ctx_id == 'WPVDB')
       self.site = "https://wpvulndb.com/vulnerabilities/#{in_ctx_val}"
     elsif (in_ctx_id == 'URL')
       self.site = in_ctx_val.to_s
diff --git a/modules/auxiliary/admin/http/wp_custom_contact_forms.rb b/modules/auxiliary/admin/http/wp_custom_contact_forms.rb
@@ -26,7 +26,7 @@ def initialize(info = {})
         [
           [ 'URL', 'http://blog.sucuri.net/2014/08/database-takeover-in-custom-contact-forms.html' ],
           [ 'URL', 'https://plugins.trac.wordpress.org/changeset?old_path=%2Fcustom-contact-forms%2Ftags%2F5.1.0.3&old=997569&new_path=%2Fcustom-contact-forms%2Ftags%2F5.1.0.4&new=997569&sfp_email=&sfph_mail=' ],
-          [ 'WPVULNDBID', '7542' ]
+          [ 'WPVDB', '7542' ]
         ],
       'DisclosureDate' => 'Aug 07 2014'
       ))
diff --git a/modules/auxiliary/dos/http/wordpress_xmlrpc_dos.rb b/modules/auxiliary/dos/http/wordpress_xmlrpc_dos.rb
@@ -30,7 +30,7 @@ def initialize(info = {})
           ['URL', 'http://www.breaksec.com/?p=6362'],
           ['URL', 'http://mashable.com/2014/08/06/wordpress-xml-blowup-dos/'],
           ['URL', 'https://core.trac.wordpress.org/changeset/29404'],
-          ['WPVULNDBID', '7526']
+          ['WPVDB', '7526']
         ],
       'DisclosureDate'=> 'Aug 6 2014'
     ))
diff --git a/modules/auxiliary/gather/wp_w3_total_cache_hash_extract.rb b/modules/auxiliary/gather/wp_w3_total_cache_hash_extract.rb
@@ -26,7 +26,7 @@ def initialize
         [
           ['OSVDB', '88744'],
           ['URL', 'http://seclists.org/fulldisclosure/2012/Dec/242'],
-          ['WPVULNDBID', '6621']
+          ['WPVDB', '6621']
         ],
       'Author'        =>
         [
diff --git a/modules/exploits/unix/webapp/open_flash_chart_upload_exec.rb b/modules/exploits/unix/webapp/open_flash_chart_upload_exec.rb
@@ -33,12 +33,12 @@ def initialize(info={})
           ['CVE',   '2009-4140'],
           ['OSVDB', '59051'],
           ['EDB',   '10532'],
-          ['WPVULNDBID', '6787'],
-          ['WPVULNDBID', '6788'],
-          ['WPVULNDBID', '6789'],
-          ['WPVULNDBID', '6790'],
-          ['WPVULNDBID', '6791'],
-          ['WPVULNDBID', '6792']
+          ['WPVDB', '6787'],
+          ['WPVDB', '6788'],
+          ['WPVDB', '6789'],
+          ['WPVDB', '6790'],
+          ['WPVDB', '6791'],
+          ['WPVDB', '6792']
         ],
       'Payload'        =>
         {
diff --git a/modules/exploits/unix/webapp/php_wordpress_foxypress.rb b/modules/exploits/unix/webapp/php_wordpress_foxypress.rb
@@ -32,7 +32,7 @@ def initialize(info = {})
           ['EDB', '18991'],
           ['OSVDB' '82652'],
           ['BID', '53805'],
-          ['WPVULNDBID', '6231']
+          ['WPVDB', '6231']
         ],
       'Privileged'     => false,
       'Platform'       => 'php',
diff --git a/modules/exploits/unix/webapp/php_wordpress_lastpost.rb b/modules/exploits/unix/webapp/php_wordpress_lastpost.rb
@@ -27,7 +27,7 @@ def initialize(info = {})
           ['CVE', '2005-2612'],
           ['OSVDB', '18672'],
           ['BID', '14533'],
-          ['WPVULNDBID', '6034']
+          ['WPVDB', '6034']
         ],
       'Privileged'     => false,
       'Payload'        =>
diff --git a/modules/exploits/unix/webapp/php_wordpress_optimizepress.rb b/modules/exploits/unix/webapp/php_wordpress_optimizepress.rb
@@ -30,7 +30,7 @@ def initialize(info = {})
       'References'      =>
         [
           [ 'URL', "http://www.osirt.com/2013/11/wordpress-optimizepress-hack-file-upload-vulnerability/" ],
-          [ 'WPVULNDBID', '7441' ]
+          [ 'WPVDB', '7441' ]
         ],
       'Privileged'      => false,
       'Platform'        => ['php'],
diff --git a/modules/exploits/unix/webapp/php_wordpress_total_cache.rb b/modules/exploits/unix/webapp/php_wordpress_total_cache.rb
@@ -39,7 +39,7 @@ def initialize(info = {})
           [ 'BID', '59316' ],
           [ 'URL', 'http://wordpress.org/support/topic/pwn3d' ],
           [ 'URL', 'http://www.acunetix.com/blog/web-security-zone/wp-plugins-remote-code-execution/' ],
-          [ 'WPVULNDBID', '6622' ]
+          [ 'WPVDB', '6622' ]
         ],
       'Privileged'     => false,
       'Platform'       => ['php'],
diff --git a/modules/exploits/unix/webapp/wp_advanced_custom_fields_exec.rb b/modules/exploits/unix/webapp/wp_advanced_custom_fields_exec.rb
@@ -30,7 +30,7 @@ def initialize(info = {})
         [
           ['OSVDB', '87353'],
           ['URL', 'http://secunia.com/advisories/51037/'],
-          ['WPVULNDBID', '6103']
+          ['WPVDB', '6103']
         ],
       'Privileged'     => false,
       'Payload'        =>
diff --git a/modules/exploits/unix/webapp/wp_asset_manager_upload_exec.rb b/modules/exploits/unix/webapp/wp_asset_manager_upload_exec.rb
@@ -32,7 +32,7 @@ def initialize(info = {})
           ['BID', '53809'],
           ['EDB', '18993'],
           ['URL', 'http://www.opensyscom.fr/Actualites/wordpress-plugins-asset-manager-shell-upload-vulnerability.html'],
-          ['WPVULNDBID', '6106']
+          ['WPVDB', '6106']
         ],
       'Platform'       => 'php',
       'Arch'           => ARCH_PHP,
diff --git a/modules/exploits/unix/webapp/wp_google_document_embedder_exec.rb b/modules/exploits/unix/webapp/wp_google_document_embedder_exec.rb
@@ -34,7 +34,7 @@ def initialize(info = {})
           ['CVE', '2012-4915'],
           ['OSVDB', '88891'],
           ['URL', 'http://secunia.com/advisories/50832'],
-          ['WPVULNDBID', '6073']
+          ['WPVDB', '6073']
         ],
       'Privileged'     => false,
       'Payload'        =>
diff --git a/modules/exploits/unix/webapp/wp_property_upload_exec.rb b/modules/exploits/unix/webapp/wp_property_upload_exec.rb
@@ -32,7 +32,7 @@ def initialize(info = {})
           ['BID', '53787'],
           ['EDB', '18987'],
           ['URL', 'http://www.opensyscom.fr/Actualites/wordpress-plugins-wp-property-shell-upload-vulnerability.html'],
-          ['WPVULNDBID', '6225']
+          ['WPVDB', '6225']
         ],
       'Platform'       => 'php',
       'Arch'		     => ARCH_PHP,
diff --git a/modules/exploits/unix/webapp/wp_wptouch_file_upload.rb b/modules/exploits/unix/webapp/wp_wptouch_file_upload.rb
@@ -35,7 +35,7 @@ def initialize(info = {})
       'References'     =>
         [
           ['URL', 'http://blog.sucuri.net/2014/07/disclosure-insecure-nonce-generation-in-wptouch.html'],
-          ['WPVULNDBID', '7118']
+          ['WPVDB', '7118']
         ],
       'Privileged'     => false,
       'Platform'       => ['php'],
diff --git a/modules/exploits/unix/webapp/wp_wysija_newsletters_upload.rb b/modules/exploits/unix/webapp/wp_wysija_newsletters_upload.rb
@@ -39,7 +39,7 @@ def initialize(info = {})
           ['URL', 'http://blog.sucuri.net/2014/07/remote-file-upload-vulnerability-on-mailpoet-wysija-newsletters.html'],
           ['URL', 'http://www.mailpoet.com/security-update-part-2/'],
           ['URL', 'https://plugins.trac.wordpress.org/changeset/943427/wysija-newsletters/trunk/helpers/back.php'],
-          ['WPVULNDBID', '6680']
+          ['WPVDB', '6680']
         ],
       'Privileged'     => false,
       'Platform'       => ['php'],

Original file line number	Diff line number	Diff line change
`@@ -26,7 +26,7 @@ def initialize(info = {})`
`26`	`26`	`[`
`27`	`27`	`[ 'URL', 'http://blog.sucuri.net/2014/08/database-takeover-in-custom-contact-forms.html' ],`
`28`	`28`	`[ 'URL', 'https://plugins.trac.wordpress.org/changeset?old_path=%2Fcustom-contact-forms%2Ftags%2F5.1.0.3&old=997569&new_path=%2Fcustom-contact-forms%2Ftags%2F5.1.0.4&new=997569&sfp_email=&sfph_mail=' ],`
`29`		`- [ 'WPVULNDBID', '7542' ]`
	`29`	`+ [ 'WPVDB', '7542' ]`
`30`	`30`	`],`
`31`	`31`	`'DisclosureDate' => 'Aug 07 2014'`
`32`	`32`	`))`
Original file line number	Diff line number	Diff line change
`@@ -26,7 +26,7 @@ def initialize`
`26`	`26`	`[`
`27`	`27`	`['OSVDB', '88744'],`
`28`	`28`	`['URL', 'http://seclists.org/fulldisclosure/2012/Dec/242'],`
`29`		`- ['WPVULNDBID', '6621']`
	`29`	`+ ['WPVDB', '6621']`
`30`	`30`	`],`
`31`	`31`	`'Author' =>`
`32`	`32`	`[`
Original file line number	Diff line number	Diff line change
`@@ -30,7 +30,7 @@ def initialize(info = {})`
`30`	`30`	`'References' =>`
`31`	`31`	`[`
`32`	`32`	`[ 'URL', "http://www.osirt.com/2013/11/wordpress-optimizepress-hack-file-upload-vulnerability/" ],`
`33`		`- [ 'WPVULNDBID', '7441' ]`
	`33`	`+ [ 'WPVDB', '7441' ]`
`34`	`34`	`],`
`35`	`35`	`'Privileged' => false,`
`36`	`36`	`'Platform' => ['php'],`