Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Wordfence has been added as an option for the Mainwp Child vulnerabil… #419

Open
wants to merge 2 commits into
base: master
Choose a base branch
from
Open

Wordfence has been added as an option for the Mainwp Child vulnerabil… #419

Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
9fa5f1d
Wordfence has been added as an option for the Mainwp Child vulnerabil…
bytepattern Sep 9, 2024
6bdf406
[CodeFactor] Apply fixes to commit 9fa5f1d
code-factor Sep 9, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
196 changes: 170 additions & 26 deletions class/class-mainwp-child-vulnerability-checker.php
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -48,6 +48,11 @@ class MainWP_Child_Vulnerability_Checker {
*/
private $wpvulndb_nvd_api = 'https://services.nvd.nist.gov/rest/json/cves/2.0';

/**
* Wordfence API URL
*/
private $wordfence_api_url = 'www.wordfence.com/api/intelligence/v2/vulnerabilities/';


/**
* Method instance()
Expand Down Expand Up @@ -100,7 +105,7 @@ public function vulner_recheck() {
$result = array();
// phpcs:disable WordPress.Security.NonceVerification
$force = ( isset( $_POST['force'] ) && ! empty( $_POST['force'] ) ) ? true : false;
$service = ( isset( $_POST['service'] ) && 'nvd_nist' === $_POST['service'] ) ? 'nvd_nist' : 'wpvulndb';
$service = ( isset( $_POST['service'] ) && 'nvd_nist' === $_POST['service'] ) ? 'nvd_nist' : ( ( isset( $_POST['service'] ) && 'wordfence' == $_POST['service'] ) ? 'wordfence' : 'wpvulndb' );

if ( 'wpvulndb' === $service ) {
if ( empty( $_POST['wpvulndb_tk'] ) ) {
Expand All @@ -120,6 +125,87 @@ public function vulner_recheck() {
);
}

/**
* @param $version
* @param $data
* @return bool
*/
function isFixedVersion( $version, $data ) {
if ( $data['from_version'] === '*' && $data['to_version'] === '*' ) {
return false;
}

if ( $data['from_version'] === '*' ) {
$data['from_version'] = '0';
}

$fromOperator = $data['from_inclusive'] ? '>=' : '>';
$toOperator = $data['to_inclusive'] ? '<=' : '<';

if ( version_compare ($version, $data['from_version'], $fromOperator) && version_compare ($version, $data['to_version'], $toOperator) ) {
return false;
} else {
return true;
}
}

/**
* @param $data
* @param $slug
* @param $version
* @return array
*/
public function get_vuln_wordfence_info( $data, $slug, $version ) {

$data = json_decode( $data, true );
$filtered_data = array();

if ( is_array( $data ) && isset( $data['result'] ) && isset( $data['result']['CVE_Items'] ) ) {
$vulns = array();
$version_missed = true;
$fixed = false;

foreach ( $data['result']['CVE_Items'] as $item ) {
$info = array();
$remediation = '';
foreach ( $item['software'] as $software ) {
foreach ( $software['affected_versions'] as $affected_version ) {
$fixed = $this->isFixedVersion($version, $affected_version);
$version_missed = false;
if ( $fixed ) {
break;
}
}

$remediation .= ' [' . ucfirst($software['type']) . '->' . $software['name'] . '] ' . $software['remediation'];
}

if ( ! $fixed ) {
if ( isset( $item['published'] ) ) {
$info['date'] = $item['published'];
}

if ( isset( $item['description'] ) ) {
$info['detail'] = $item['description'] . $remediation;
}

$customCveId = explode( '-', $item['id']);
$info['cve_id'] = $item['cve'] ?? end($customCveId);
$info['slug'] = $slug;
}
if ( $version_missed ) {
$info['missed_version'] = 1;
}
if ( ! empty( $info ) ) {
$vulns[] = $info;
}
}
$filtered_data[ $slug ]['vulnerabilities'] = $vulns;
}

return $filtered_data;
}

/**
* Check for plugin vulnerabilities.
*
Expand Down Expand Up @@ -151,6 +237,8 @@ public function check_plugins( $force = false, $service = '' ) { //phpcs:ignore
}
// URL Syntax example: https://services.nvd.nist.gov/rest/json/cves/2.0?virtualMatchString=cpe:2.3:a:automattic:akismet:* .
$url = $this->wpvulndb_nvd_api . '?virtualMatchString=cpe:2.3:a:' . $author_name . ':' . $slug . ':*';
} elseif ( 'wordfence' === $service ) {
$url = $this->wordfence_api_url . 'production?keyword=' . $string[0];
} else {
$url = $this->wpvulndb_api . 'plugins/' . $string[0];
}
Expand All @@ -161,6 +249,8 @@ public function check_plugins( $force = false, $service = '' ) { //phpcs:ignore
$plug_vuln_filter = array();
if ( 'nvd_nist' === $service ) {
$plug_vuln_filter = $this->get_vuln_nvd_nist_info( $plug_vuln, $string[0], $plugin_version );
} elseif ( 'wordfence' == $service ) {
$plug_vuln_filter = $this->get_vuln_wordfence_info( $plug_vuln, $string[0], $plugin_version );
} else {
$plug_vuln = json_decode( $plug_vuln, true );
$plug_vuln_filter = $plug_vuln;
Expand Down Expand Up @@ -214,6 +304,8 @@ public function check_wp( $force = false, $service = '' ) {
if ( false === $wp_vuln || $force ) {
if ( 'nvd_nist' === $service ) {
$url = $this->wpvulndb_nvd_api . '?virtualMatchString=cpe:2.3:a:WordPress:WordPress';
} elseif ( 'wordfence' == $service ) {
$url = $this->wordfence_api_url . 'production?keyword=WordPress';
} else {
$url = $this->wpvulndb_api . 'wordpresses/' . $number_version;
}
Expand All @@ -223,6 +315,12 @@ public function check_wp( $force = false, $service = '' ) {
$wp_vuln = $this->get_vuln_nvd_nist_info( $wp_vuln, 'wordpress', $wp_version ); //phpcs:ignore -- wordpress.
$wp_vuln = wp_json_encode( $wp_vuln );
}

if ( 'wordfence' == $service ) {
$wp_vuln = $this->get_vuln_wordfence_info( $wp_vuln, 'WordPress', $wp_version );
$wp_vuln = wp_json_encode( $wp_vuln );
}

set_transient( 'mainwp_vulnche_trans_wp_json', $wp_vuln, 1 * DAY_IN_SECONDS );
}
return $wp_vuln;
Expand Down Expand Up @@ -257,6 +355,8 @@ public function check_themes( $force = false, $service = '' ) { // phpcs:ignore

if ( 'nvd_nist' === $service ) {
$url = $this->wpvulndb_nvd_api . '?keywordSearch=' . $th['id'] . '&keywordExactMatch';
} elseif ( 'wordfence' === $service ) {
$url = $this->wordfence_api_url . 'production?keyword=' . $th['id'];
} else {
$url = $this->wpvulndb_api . 'themes/' . $th['id'];
}
Expand All @@ -268,6 +368,8 @@ public function check_themes( $force = false, $service = '' ) { // phpcs:ignore
if ( $th_vuln ) {
if ( 'nvd_nist' === $service ) {
$th_vuln_filter = $this->get_vuln_nvd_nist_info( $th_vuln, $th['id'], $th['version'] );
} elseif ( 'wordfence' === $service ) {
$th_vuln_filter = $this->get_vuln_wordfence_info( $th_vuln, $th['id'], $th['version'] );
} else {
$th_vuln = json_decode( $th_vuln, true );
$th_vuln_filter = $th_vuln;
Expand Down Expand Up @@ -535,37 +637,79 @@ public function get_vuln_nvd_nist_info( $data, $slug, $version ) { // phpcs:ign
*/
public function vulnche_get_content( $url, $service = '' ) {

$encrypted = get_transient( 'mainwp_child_trans_wpvulndb_tk' );
$wpvulndb_token = MainWP_Child_Keys_Manager::instance()->decrypt_string( $encrypted );

// phpcs:disable WordPress.WP.AlternativeFunctions -- Required to achieve desired results, pull request solutions appreciated.
$ch = curl_init();
curl_setopt( $ch, CURLOPT_URL, $url );
curl_setopt( $ch, CURLOPT_HEADER, 0 );
if ( 'nvd_nist' !== $service ) {
if ( empty( $wpvulndb_token ) ) {
if ( 'resource' === gettype( $ch ) ) {
curl_close( $ch );
if ( 'wordfence' === $service ) {

$typeName = explode( '=', $url );
if ( $this->wordfenceJson == '' ) {
$ch = curl_init();
curl_setopt( $ch, CURLOPT_URL, $url );
curl_setopt( $ch, CURLOPT_HEADER, 0 );
curl_setopt( $ch, CURLOPT_USERAGENT, $this->get_random_user_agent() );
curl_setopt( $ch, CURLOPT_RETURNTRANSFER, true );
curl_setopt($ch, CURLOPT_FOLLOWLOCATION, true);
$response = curl_exec( $ch );
$this->wordfenceJson = json_decode($response, true);
}
$output = array();
$resultData = array();
foreach ( $this->wordfenceJson as $feed ) {
if ( $typeName[1] == $feed['software'][0]['slug'] ) {
$output[] = $feed;

$resultData[] = array(
'CVE_data_type' => isset($feed['cve']) ? 'CVE' : '',
'references' => array( 'reference_data' => $feed['references'] ),
'description' => array( 'description_data' => $feed['description'] ),
'publishedDate' => $feed['published'],
'lastModifiedDate' => $feed['updated'],
);
}
return false;
}
curl_setopt( $ch, CURLOPT_HTTPHEADER, array( 'Authorization: Token token=' . $wpvulndb_token ) );
}
curl_setopt( $ch, CURLOPT_USERAGENT, $this->get_random_user_agent() );
curl_setopt( $ch, CURLOPT_RETURNTRANSFER, true );

$output = curl_exec( $ch );
$info = curl_getinfo( $ch, CURLINFO_HTTP_CODE );
$data = array(
'resultsPerPage' => count($output),
'startIndex' => 0,
'totalResults' => count($output),
'result' => array(
'CVE_Items' => $output,
),
);

if ( 'resource' === gettype( $ch ) ) {
curl_close( $ch );
}
// phpcs:enable
return json_encode($data);
} else {

$encrypted = get_transient( 'mainwp_child_trans_wpvulndb_tk' );
$wpvulndb_token = MainWP_Child_Keys_Manager::instance()->decrypt_string( $encrypted );

// phpcs:disable WordPress.WP.AlternativeFunctions -- Required to achieve desired results, pull request solutions appreciated.
$ch = curl_init();
curl_setopt( $ch, CURLOPT_URL, $url );
curl_setopt( $ch, CURLOPT_HEADER, 0 );
if ( 'nvd_nist' !== $service ) {
if ( empty( $wpvulndb_token ) ) {
if ( 'resource' === gettype( $ch ) ) {
curl_close( $ch );
}
return false;
}
curl_setopt( $ch, CURLOPT_HTTPHEADER, array( 'Authorization: Token token=' . $wpvulndb_token ) );
}
curl_setopt( $ch, CURLOPT_USERAGENT, $this->get_random_user_agent() );
curl_setopt( $ch, CURLOPT_RETURNTRANSFER, true );

$output = curl_exec( $ch );
$info = curl_getinfo( $ch, CURLINFO_HTTP_CODE );

if ( false === $output || 200 !== (int) $info ) {
$output = null;
if ( 'resource' === gettype( $ch ) ) {
curl_close( $ch );
}
// phpcs:enable

if ( false === $output || 200 !== (int) $info ) {
$output = null;
}
return $output;
}
return $output;
}

/**
Expand Down