From 5dad6e737508d3003af1884c9be96116e16fd9ab Mon Sep 17 00:00:00 2001 From: Brendan Coles Date: Tue, 5 May 2015 07:07:58 +0000 Subject: [PATCH] Add The-Amazing-Little-Poll plugin --- plugins/The-Amazing-Little-Poll.rb | 41 ++++++++++++++++++++++++++++++ 1 file changed, 41 insertions(+) create mode 100644 plugins/The-Amazing-Little-Poll.rb diff --git a/plugins/The-Amazing-Little-Poll.rb b/plugins/The-Amazing-Little-Poll.rb new file mode 100644 index 000000000..c91dfd7b7 --- /dev/null +++ b/plugins/The-Amazing-Little-Poll.rb @@ -0,0 +1,41 @@ +## +# This file is part of WhatWeb and may be subject to +# redistribution and commercial restrictions. Please see the WhatWeb +# web site for more information on licensing and terms of use. +# http://www.morningstarsecurity.com/research/whatweb +## +Plugin.define "The-Amazing-Little-Poll" do +author "Brendan Coles " # 2012-06-04 +version "0.1" +description "The Amazing Little Poll is a very simple php polling script. - Homepage: http://www.mr-corner.com/LittlePoll/index.html" + +# ShodanHQ results as at 2012-06-04 # +# 35 for pollidcookie votingstep + +# Google results as at 2012-06-04 # +# 11 for intitle:"Little Poll Admin Center" "The Amazing Little Poll Admin Center" + +# Dorks # +dorks [ +'intitle:"Little Poll Admin Center" "The Amazing Little Poll Admin Center"' +] + +# Matches # +matches [ + +# ./lp_admin.php # Admin Page # h1 Heading # Version Detection +{ :version=>/

The Amazing Little Poll Admin Center v([^<]+)<\/h1>/ }, + +# ./lp_admin.php # Admin Page # Form +{ :text=>'
Admin Password:
' }, + +# ./lp_settings.inc # Password Detection +{ :url=>"lp_settings.inc", :string=>/\/\/ Change this password so no one else can access the lp_admin\.php via the web\s+\$pwd="([^"]+)";/ }, + +# Set-Cookie # pollidcookie +{ :search=>"headers[set-cookie]", :regexp=>/pollidcookie=/ }, + +] + +end +