installed plugin WPScan version 1.15.1

wp-content/plugins/wpscan/assets/css/deactivate.css

@@ -0,0 +1,57 @@
+.wpscan-model {
+    position: fixed;
+    overflow: auto;
+    height: 100%;
+    width: 100%;
+    top: 0;
+    left: 0;
+    z-index: 100000;
+    display: none;
+    background: rgba(0,0,0,0.6);
+}
+
+.wpscan-model.active {
+    display: block;
+}
+
+.wpscan-modal-dialog {
+    background: white;
+    z-index: 100001;
+    width: 500px;
+    margin: auto;
+    position: absolute;
+    top: -30px;
+    left: 0;
+    bottom: 0;
+    right: 0;
+    height: 60px;
+}
+
+.wpscan-model-content {
+    background: #f2f2f2;
+    height: 100%;
+    padding: 15px 20px 20px 20px;
+    line-height: 1.6;
+}
+
+h4 {
+    border-bottom: #eeeeee solid 1px;
+    background: #fbfbfb;
+    padding: 15px 20px;
+    position: relative;
+    text-transform: uppercase;
+    margin: 0;
+    font-size: 1.2em;
+    font-weight: bold;
+    color: #cacaca;
+    text-shadow: 1px 1px 1px #fff;
+    letter-spacing: 0.6px;
+}
+
+.wpscan-model-footer {
+    border: 0;
+    background: #fefefe;
+    padding: 10px;
+    border-top: #eeeeee solid 1px;
+    text-align: right;
+}

wp-content/plugins/wpscan/assets/css/settings.css

@@ -0,0 +1,23 @@
+.wpscan-ignore-items-section {
+    display: block;
+    margin-bottom: 25px;
+    float: left;
+    width: 800px;
+}
+
+.wpscan-ignore-items-section label {
+    width: 30%;
+    float: left;
+    margin-bottom: 12px;
+    padding-right: 20px;
+    line-break: anywhere;
+    white-space: nowrap;
+    overflow: hidden;
+    text-overflow: ellipsis;
+    box-sizing: border-box;
+}
+
+.blur-on-lose-focus:not(:focus) {
+     color: transparent;
+     text-shadow: 0 0 5px rgba(0,0,0,0.5);
+}

wp-content/plugins/wpscan/assets/css/style.css

@@ -0,0 +1,256 @@
+
+/* Table list */
+
+.wpscan-report-section {
+  margin: 0px 0px 20px 0px;
+}
+
+.wp-list-table.plugins .plugin-title strong {
+  float: left;
+  margin-bottom: 5px;
+  margin-right: 12px;
+  white-space: normal !important;
+}
+
+.column-name {
+  word-break: break-word;
+  width: 250px;
+}
+
+.is-gray {
+  color: gray;
+}
+
+.is-green {
+  color: green;
+}
+
+.is-red {
+  color: crimson;
+}
+
+@media screen and (max-width: 782px) {
+  .wp-list-table.plugins tr th.check-column { padding: 0 0 0 10px; }
+}
+
+/* Summary */
+
+#wpscan-metabox-summary .check-now { padding: 0; text-align: right; }
+#wpscan-metabox-summary .spinner { float: none; margin-top: 0; }
+
+@media screen and (max-width: 850px) {
+  #wpscan-metabox-summary { margin-top: 20px; }
+}
+
+/* Notification */
+
+#wpscan-metabox-notification table,
+#wpscan-metabox-notification tbody,
+#wpscan-metabox-notification tr,
+#wpscan-metabox-notification th,
+#wpscan-metabox-notification td { display: block; width: 100%; }
+#wpscan-metabox-notification th { padding: .5em 0; }
+#wpscan-metabox-notification td { padding: 0; }
+#wpscan-metabox-notification th,
+#wpscan-metabox-notification td,
+#wpscan-metabox-notification td p { font-size: 13px; }
+#wpscan-metabox-notification input[type="text"] { width: 100%; }
+#wpscan-metabox-notification .submit { padding: 0; text-align: right; }
+
+@media screen and (max-width: 782px) {
+  #wpscan-metabox-notification label { padding-left: 35px; }
+  #wpscan-metabox-notification input[type="checkbox"] { margin-left: -35px; }
+}
+
+/* Ignore vulnerabilities */
+
+#wpscan-metabox-ignore-vulnerabilities table,
+#wpscan-metabox-ignore-vulnerabilities tbody,
+#wpscan-metabox-ignore-vulnerabilities tr,
+#wpscan-metabox-ignore-vulnerabilities th,
+#wpscan-metabox-ignore-vulnerabilities td { display: block; width: 100%; }
+#wpscan-metabox-ignore-vulnerabilities th { padding: .5em 0; }
+#wpscan-metabox-ignore-vulnerabilities td { padding: 0; }
+#wpscan-metabox-ignore-vulnerabilities th,
+#wpscan-metabox-ignore-vulnerabilities td,
+#wpscan-metabox-ignore-vulnerabilities td p { font-size: 13px; }
+#wpscan-metabox-ignore-vulnerabilities input[type="text"] { width: 100%; }
+#wpscan-metabox-ignore-vulnerabilities label { position: relative; display: block; padding-left: 25px; margin: 0 0 10px; }
+#wpscan-metabox-ignore-vulnerabilities label + br { display: none; }
+#wpscan-metabox-ignore-vulnerabilities input[type="checkbox"] { margin-left: -25px; }
+#wpscan-metabox-ignore-vulnerabilities .submit { padding: 0; text-align: right; }
+
+@media screen and (max-width: 782px) {
+  #wpscan-metabox-ignore-vulnerabilities label { padding-left: 35px; }
+  #wpscan-metabox-ignore-vulnerabilities input[type="checkbox"] { margin-left: -35px; }
+}
+
+/* Account */
+
+#wpscan-account-summary ul li span {
+  float: right;
+  text-transform: capitalize;
+  min-width: 30px;
+  text-align: center;
+  border-radius: 3px;
+  padding: 0px 11px 1px 11px;
+  word-spacing: 1px;
+  color: #4e645a;
+  background: #cbe0ec;
+}
+
+#wpscan-account-summary ul li {
+  width: 100%;
+  overflow: hidden;
+  line-height: 23px;
+  margin-bottom: 14px;
+}
+
+#wpscan-account-summary ul {
+  margin: 10px 0px;
+}
+
+#wpscan-account-summary .button {
+  float: right;
+  margin-top: 15px;
+}
+
+#wpscan-account-summary .inside {
+  overflow: hidden;
+}
+
+.wpscan-status-green {
+  background: #c3e6c1 !important;
+  color: #026624 !important;
+}
+
+.wpscan-status-orange {
+  background: #ffd2a3 !important;
+  color: #d95200 !important;
+}
+
+.wpscan-status-red {
+  background: #ffb6b6 !important;
+  color: #c00 !important;
+}
+
+/* download report */
+
+.toplevel_page_wpscan .download-report {
+  margin-top: 15px;
+}
+
+/* Extra info */
+
+.vulnerability {
+  margin-bottom: 12px;
+  float: left;
+  width: 100%;
+  line-height: 1.8;
+  line-height: 25px;
+}
+
+.vulnerability a {
+  float: left;
+  max-width: 80%;
+}
+
+.vulnerability:last-child {
+  margin-bottom: 5px;
+}
+
+.vulnerability-severity {
+  float: left;
+  min-width: 60px;
+  margin-right: 20px;
+}
+
+.vulnerability-title {
+  float: left;
+}
+
+.vulnerability-severity span {
+  float: left;
+  text-transform: capitalize;
+  text-align: center;
+  border-radius: 3px;
+  font-size: 11px;
+  margin: 6px 0px 0px 0px;
+  line-height: 19px;
+  min-width: 60px;
+  color: #4e645a;
+  background: #c6e1d5;
+}
+
+.item-closed {
+  float: left;
+  text-transform: capitalize;
+  min-width: 30px;
+  text-align: center;
+  border-radius: 3px;
+  padding: 0px 8px 1px 8px;
+  line-height: 20px;
+  font-size: 11px;
+  margin-bottom: 3px;
+  margin-top: 10px;
+  background: #e1dfdf !important;
+}
+
+.item-version {
+  float: left;
+  width: 100%;
+}
+
+.wpscan-info {  
+  background: #c1e3e6 !important; 
+  color: #304584 !important;  
+} 
+
+.wpscan-low { 
+  background: #c3e6c1 !important; 
+  color: #026624 !important;  
+} 
+
+.wpscan-medium {  
+  background: #ffd2a3 !important; 
+  color: #d95200 !important;  
+} 
+
+.wpscan-high {  
+  background: #ffb6b6 !important; 
+  color: #c00 !important; 
+} 
+
+.wpscan-critical {  
+  background: #e1b8ff !important; 
+  color: #66348a !important;  
+} 
+
+.wpscan-ignored {
+  border-radius: 3px;
+  padding: 0px 8px 0px 8px;
+  line-height: 22px;
+  font-size: 12px;
+  float: left;
+  background: #c1e3e6 !important;
+  color: #304584 !important;
+}
+
+.security-check-actions .spinner {
+  float: none;
+  position: absolute;
+}
+
+.security-check-actions button {
+  margin-right: 5px !important;
+  margin-bottom: 5px !important;
+  width: 70px;
+}
+
+.ui-tooltip {
+  padding: 6px 12px;
+  border-radius: 3px;
+  max-width: 350px;
+  background: #d7dade;
+  color: #2a2c31;
+}

wp-content/plugins/wpscan/assets/js/deactivate.js

@@ -0,0 +1,19 @@
+jQuery(document).ready(function($) {
+    let link = $('#deactivate-wpscan');
+    let deactivate = $('.wpscan-model .button-deactivate');
+    let close = $('.wpscan-model .button-close');
+
+    deactivate.attr('href', link.attr('href'));
+    
+    link.on('click', function (e) {
+        e.preventDefault();
+
+        $('.wpscan-model').show()
+    });
+
+    close.on('click', function (e) {
+        e.preventDefault();
+
+        $('.wpscan-model').hide()
+    });
+});

wp-content/plugins/wpscan/assets/js/scripts.js

@@ -0,0 +1,141 @@
+// Actions for metabox Summary
+
+jQuery( document ).ready(
+	function( $ ) {
+
+		let button_check          = $( '#wpscan-metabox-summary .check-now button' );
+		let security_check        = $( '.security-check-actions .button' );
+		let spinner           	  = $( '#wpscan-metabox-summary .spinner' );
+		let security_check_runnig = false;
+		let security_check_button = [];
+
+		// Checks if a cron job is already running when the page loads
+		if ( wpscan.doing_cron === 'YES' ) {
+			button_check.attr( 'disabled', true );
+			spinner.css( 'visibility', 'visible' );
+
+			check_cron();
+		}
+
+		if ( wpscan.doing_security_cron.length !== 0 ) {
+			check_security_cron();
+		}
+
+		// Starts the cron job
+		function do_check() {
+			button_check.attr( 'disabled', true );
+			spinner.css( 'visibility', 'visible' );
+
+			$.ajax(
+				{
+					url: wpscan.ajaxurl,
+					method: 'POST',
+					data: {
+						action: wpscan.action_check,
+						_ajax_nonce: wpscan.ajax_nonce
+					},
+					success: function( ) {
+						check_cron();
+					},
+					error: function () {
+						location.reload();
+					}
+				}
+			);
+
+		}
+
+		// Check every X seconds if cron has finished
+		function check_cron() {
+
+			setTimeout(
+				function() {
+					$.ajax(
+						{
+							url: ajaxurl,
+							method: 'POST',
+							data: {
+								action: wpscan.action_cron,
+								_ajax_nonce: wpscan.ajax_nonce
+							},
+							success: function( data ) {
+								if ( data === 'NO' ) {
+									location.reload();
+								} else {
+									check_cron();
+								}
+							},
+							error: function ( ) {
+								location.reload();
+							}
+						}
+					);
+				},
+				1000 * 2
+			);
+
+		}
+
+		function check_security_cron() {
+			security_check_runnig = true;
+			security_check_button = [];
+			setTimeout(
+				function() {
+					$.ajax(
+						{
+							url: ajaxurl,
+							method: 'POST',
+							data: {
+								action: wpscan.action_security_check,
+								_ajax_nonce: wpscan.ajax_nonce
+							},
+							success: function( data ) {
+								if ( data.length !== 0 ) {
+									var ajax_response = $.parseJSON( data );
+									$.each(
+										ajax_response.inline,
+										function ( key, data ) {
+											security_check_button.push( key );
+										}
+									);
+
+									$( '.security-check-actions button[data-action="run"]' ).each(
+										function() {
+											if ( $.inArray( $( this ).data( 'check-id' ), security_check_button ) === -1 && $( this ).attr( 'disabled' ) ) {
+												$( this ).closest( 'tr' ).find( '.check-column' ).html( ajax_response.plugins[$( this ).data( 'check-id' )]['status'] );
+												$( this ).closest( 'tr' ).find( '.vulnerabilities' ).html( ajax_response.plugins[$( this ).data( 'check-id' )]['vulnerabilities'] );
+												$( this ).closest( 'tr' ).find( '.security-check-actions' ).html( ajax_response.plugins[$( this ).data( 'check-id' )]['security-check-actions'] );
+											}
+										}
+									);
+
+									if ( security_check_button.length !== 0 ) {
+										check_security_cron();
+									} else {
+										location.reload();
+									}
+								}
+							},
+							error: function ( ) {
+								location.reload();
+							}
+						}
+					);
+				},
+				2000
+			);
+
+		}
+
+		// Button
+		button_check.on( 'click', do_check );
+		if ( ! security_check_runnig ) {
+			security_check.one( 'click', check_security_cron );
+		}
+
+		// close postboxes that should be closed
+		$( '.if-js-closed' ).removeClass( 'if-js-closed' ).addClass( 'closed' );
+		// postboxes setup
+		postboxes.add_postbox_toggles( 'wpscan' );
+	}
+);

wp-content/plugins/wpscan/assets/js/security-checks.js

@@ -0,0 +1,58 @@
+jQuery( document ).ready(
+	function ($) {
+
+		// Tooltips
+		$( "strong[title]" ).tooltip(
+			{
+				position: {
+					my: "left top",
+					at: "right+5 top-5",
+					collision: "none"
+				}
+			}
+		);
+
+		// Actions
+		$( '.security-check-actions button' ).on(
+			'click',
+			function () {
+
+				let btn            = $( this );
+				let check          = btn.data( 'check-id' );
+				let action_id      = btn.data( 'action' );
+				let should_confirm = btn.data( 'confirm' );
+
+				if (should_confirm && ! confirm( 'Are you sure?' )) {
+					return;
+				}
+
+				btn.siblings( '.spinner' ).css( 'visibility', 'visible' );
+
+				$.ajax(
+					{
+						url: wpscan.ajaxurl,
+						method: 'POST',
+						data: {
+							action: 'wpscan_check_action',
+							action_id: action_id,
+							check,
+							_ajax_nonce: wpscan.ajax_nonce
+						},
+						success: function (res) {
+							console.log( res );
+							if (res.success && 'dismiss' === action_id) {
+								location.reload();
+							} else if (res.success) {
+								console.log( $( this ) );
+								btn.prop( 'disabled', true ).html( wpscan.running ).siblings( '.spinner' ).css( 'visibility', 'hidden' );
+							} else {
+								alert( 'Something went wrong, please reload the page.' );
+							}
+						}
+					}
+				);
+			}
+		);
+
+	}
+);

wp-content/plugins/wpscan/assets/svg/menu-icon.svg

@@ -0,0 +1 @@
+<svg id="Layer_1_copy" data-name="Layer 1 copy" xmlns="http://www.w3.org/2000/svg" width="16" height="16" viewBox="0 0 20 20"><defs><style>.cls-1{fill:#a0a5aa;}</style></defs><title>Artboard 2</title><polyline class="cls-1" points="16.67 10 20 8.08 10 2.3 0 8.08 3.33 10 10 6.15 16.67 10"/><path class="cls-1" d="M16.67,10l-4.2,2.42L10,13.85l-.51-.3L8.3,12.87,7.15,14.13a.93.93,0,0,1-.64.27.9.9,0,0,1-.63-.27.88.88,0,0,1,0-1.27L6.81,12,3.33,10,0,11.92,10,17.7l10-5.78Z"/><path class="cls-1" d="M11.36,10A1.37,1.37,0,0,1,10,11.36h0V11h0a1,1,0,0,0,.72-.29A1,1,0,0,0,11,10ZM10,11.72a1.72,1.72,0,0,1-1.21-.5A1.74,1.74,0,0,1,8.29,10,1.71,1.71,0,1,1,10,11.72Zm0-3.94A2.23,2.23,0,0,0,7.77,10a2.17,2.17,0,0,0,.49,1.38c-.14.13-1.86,1.69-2,1.84a.37.37,0,1,0,.53.53c.15-.15,1.71-1.87,1.83-2a2.28,2.28,0,0,0,1.39.49,2.23,2.23,0,1,0,0-4.46Z"/></svg>