1## 2# This file is part of WhatWeb and may be subject to 3# redistribution and commercial restrictions. Please see the WhatWeb 4# web site for more information on licensing and terms of use. 5# http://www.morningstarsecurity.com/research/whatweb 6## 7# Version 0.4 # 2011-07-07 # 8# updated regex and added google dorks 9## 10# Version 0.3 11# remove :certainty and :name 12## 13Plugin.define "OSCommerce" do 14author "Andrew Horton" 15version "0.4" 16description "Open Source Ecommerce System in PHP. It was first released in March 2000 as 'The Exchange Project'. Branched projects include : Ian's Loaded, ZenCart, CRE Loaded, http://www.oscommerce.com. This plugin recognises security warnings for file permissions and the installation directory. Aggressive plugin attempts to get version from /admin/login.php page." 17 18# ShodanHQ results # 19# 9,154 for cookie_test=please_accept_for_session 20 21# Google results # 22# 800 for "Powered by osCommerce" 23# 69 for inurl:"extras/update.php" -display 24# 22 for inurl:"/admin/configuration.php?" Mystore 25# 14 for intitle:osCommerce inurl:admin intext:"redistributable under the GNU" intext:"Online Catalog" -demo -site:oscommerce.com 26 27# Dorks # 28dorks [ 29'"Powered by osCommerce"', 30'inurl:"extras/update.php" -display' 31] 32 33 34 35# Matches # 36matches [ 37 38# 'osCsid=' in link tag, length 26|32 39{ :regexp=>/<[^>]+(src|href)\s*=\s*[^>]\bosCsid=([a-z0-9]{26}|[a-z0-9]{32})/ }, 40 41# The Exchange Project - Community Made Shopping! 42{ :certainty=>25, :text=>'The Exchange Project - Community Made Shopping!'}, 43 44# Security Warning 45{ :string=>"warning", :text=>'<td class="messageStackWarning"><img src="images/icons/warning.gif"'}, 46 47# Version Detection # /admin/login.php 48{ :version=>/<img src="images\/oscommerce.png" border="0" alt="osCommerce ([^"]+)"/, :url=>"/admin/login.php",:name=>"admin page version" }, 49 50# Powered by text 51{ :text=>'Powered by <a href="http://www.oscommerce.com" target="_blank">osCommerce</a>' }, 52 53# cookie_test Cookie 54{ :search=>"headers[set-cookie]", :text=>'cookie_test=please_accept_for_session;' }, 55 56# osCsid Cookie 57{ :search=>"headers[set-cookie]", :regexp=>/osCsid=[a-z0-9]{32};/ }, 58 59] 60 61end 62 63=begin 64 65# The Exchange Project - Community Made Shopping! 66#$Id: whos_online.php, v 1.0 2001/12/05 by mattice@xs4all.nl 67# Set-Cookie: osCsid=c85f6adba3b454436849750b3a1a1c47; 68# .php?osCsid=69714fbf4c4d737b36631506b1629db0 69# 70 71 72# version: 73 74# <!-- start bestsellersbox_only //--> after 12/02/2000 The Exchange Project Preview Release 2.0 75# <!-- currencies //--> after 03/06/2001 The Exchange Project Preview Release 2.1 76 77#Powered by <a href="http://www.oscommerce.com" target="_blank">osCommerce</a> 78#<img src="/images/poweredby.gif" width="77" height="30" vspace="0" hspace="0" border="0" alt="Powered by osCommerce"> 79# 80 81# <img src="images/oscommerce.png" border="0" alt="osCommerce Online Merchant v2.2 RC2a" title=" osCommerce Online Merchant v2.2 RC2a "> 82 83# osCommerce Online Merchant Copyright © 2007 <a href="http://www.oscommerce.com" target="_blank">osCommerce</a><br> 84# E-Commerce Engine Copyright © 2003 <a href="http://www.oscommerce.com" target="_blank">osCommerce</a><br> 85# osCommerce Online Merchant Copyright © 2008 <a href="http://www.oscommerce.com" target="_blank">osCommerce</a><br> 86 87# <td align="center" class="smallText">Powered by <a href="http://www.oscommerce.com" target="_blank">osCommerce</a></td> 88# <td align="center" class="smallText">Powered by <a href="http://www.oscommerce.com" target="_blank">osCommerce</a></td> 89 90 91# older versions: 92# doesn't seem to be normal OSCommerce: with 26long code: www.telepiscinas.com-catalog-index.php www.cleanshop.hu-clean-index.php atlantasolar.com 93# www.crowdcontroldepot.com 94 95 96CHANGELOG 97 98# http://svn.oscommerce.com/fisheye/browse/~raw,r=1832/osCommerce/oscommerce2/trunk/CHANGELOG 99 100# 03/12/2000 The Exchange Project Preview Release 1.0 101# 05/14/2000 The Exchange Project Preview Release 1.1 102# 12/02/2000 The Exchange Project Preview Release 2.0 103# 12/13/2000 The Exchange Project Preview Release 2.0a 104# 03/06/2001 The Exchange Project Preview Release 2.1 105# 02/17/2003 osCommerce 2.2 Milestone 1 106# 12/07/2003 osCommerce 2.2 Milestone 2 107# 11/12/2005 osCommerce 2.2 Milestone 2 Update 051112 108# 11/13/2005 osCommerce 2.2 Milestone 2 Update 051113 109# 08/17/2006 osCommerce 2.2 Milestone 2 Update 060817 110# 07/03/2007 osCommerce Online Merchant 2.2 RC1 111# 01/16/2008 osCommerce Online Merchant 2.2 RC2 112# 01/30/2008 osCommerce Online Merchant 2.2 RC2a 113 114 115Admin Page 116 117# <img src="images/oscommerce.png" border="0" alt="osCommerce Online Merchant v2.2 RC2" title=" osCommerce Online Merchant v2.2 RC2 "> 118# Copy 2008 119# <img src="images/oscommerce.png" border="0" alt="osCommerce Online Merchant v2.2 RC1" title=" osCommerce Online Merchant v2.2 RC1 "> 120# Copy 2007 121# <img src="images/oscommerce.png" border="0" alt="osCommerce Online Merchant v2.2 RC2a" title=" osCommerce Online Merchant v2.2 RC2a "> 122# Copy 2008 123 124 125ERRORS 126 127# <td class="messageStackWarning"><img src="images/icons/warning.gif" border="0" alt="Advertencia" title=" Advertencia " width="10" height="10"> Advertencia: El directorio de instalación existe en: /storage/mijndomein/users/068763/public/sites/www.drukwerkzone.nl/install. Por razones de seguridad, elimine este directorio completamente.</td> 128 129# <td class="messageStackWarning"><img src="images/icons/warning.gif" border="0" alt="Warning" title=" Warning " width="10" height="10"> Warning: Installation directory exists at: /storage/mijndomein/users/068763/public/sites/www.drukwerkzone.nl/install. Please remove this directory for security reasons.</td> 130 131# <td class="messageStackWarning"><img src="images/icons/warning.gif" border="0" alt="Warning" title=" Warning " width="10" height="10"> Warning: I am able to write to the configuration file: /storage/mijndomein/users/068763/public/sites/www.drukwerkzone.nl/includes/configure.php. This is a potential security risk - please set the right user permissions on this file.</td> 132 133=end 134 135