Nicolas, Thanks for reporting the bugs, please see inline:
On Wed, Aug 12, 2009 at 4:34 AM, Nicolas Krassas<[email protected]> wrote: > Hi, trying an audit procedure I’ve encountered 2 unhandled errors. > > The first one was whilst the discovery was taking place and the > second one, after I cancel the procedure. > > > > First error : > > <etc..> > > > > New URL found by webSpider plugin: http://url/images/left.jpg > > New URL found by webSpider plugin: http://url/images/right.jpg > > New URL found by userDir plugin: http://url/admin/ > > Server uses 200 instead of HTTP 404 error code. > > > > Unhandled error, traceback: Traceback (most recent call last): > > File "/root/w3af/core/controllers/w3afCore.py", line 411, in start > > self._realStart() > > File "/root/w3af/core/controllers/w3afCore.py", line 471, in _realStart > > self._fuzzableRequestList = self._discoverAndBF() > > File "/root/w3af/core/controllers/w3afCore.py", line 356, in > _discoverAndBF > > discoveredFrList = self._discover( tmpList ) > > File "/root/w3af/core/controllers/w3afCore.py", line 634, in _discover > > result = self._discoverWorker( toWalk ) > > File "/root/w3af/core/controllers/w3afCore.py", line 680, in > _discoverWorker > > pluginResult = plugin.discover_wrapper( fr ) > > File "/root/w3af/core/controllers/basePlugin/baseDiscoveryPlugin.py", line > 47, in discover_wrapper > > return self.discover( fuzzable_request_copy ) > > File "/root/w3af/plugins/discovery/wordpress_fingerprint.py", line 119, in > discover > > ('/wp-includes/js/thickbox/thickbox.css','-ms-filter:','2.7.1'), > > TypeError: 'tuple' object is not callable > > w0w... I can't believe that THAT code made it to the trunk. Thanks for the bug report, I was able to reproduce it, and fix it. > > > Exception in thread Thread-8: > > Traceback (most recent call last): > > File "/usr/lib/python2.5/threading.py", line 486, in __bootstrap_inner > > self.run() > > File "/usr/lib/python2.5/threading.py", line 446, in run > > self.__target(*self.__args, **self.__kwargs) > > File "/root/w3af/core/ui/consoleUi/rootMenu.py", line 106, in _real_start > > raise e > > TypeError: 'tuple' object is not callable > This second traceback is related to the first one. > > At that point i canceled the search and went back to check the audit plugins > finding the following: > > > > User hitted Ctrl+C, stopping scan. > > w3af>>> plugins > > w3af/plugins>>> audit > > Failed to get an instance of "dav". Original exception: "Failed to create > shelve file. Original exception: (2, 'No such file or directory')".Traceback > for this error: Traceback (most recent call last): > > File "/root/w3af/core/controllers/misc/factory.py", line 60, in factory > > res = aClass(*args) > > File "/root/w3af/plugins/audit/dav.py", line 55, in __init__ > > self._already_tested_dirs = disk_list() > > File "/root/w3af/core/data/db/temp_persist.py", line 126, in __init__ > > self._temp_shelve = temp_shelve() > > File "/root/w3af/core/data/db/temp_persist.py", line 85, in __init__ > > raise Exception('Failed to create shelve file. Original exception: ' + > str(e)) > > Exception: Failed to create shelve file. Original exception: (2, 'No such > file or directory') > Are you using windows? > > w3af/plugins>>> > > > > > > Regards, > > Dinos > > > > ------------------------------------------------------------------------------ > Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day > trial. Simplify your report design, integration and deployment - and focus > on > what you do best, core application coding. Discover what's new with > Crystal Reports now. http://p.sf.net/sfu/bobj-july > _______________________________________________ > W3af-users mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/w3af-users > > -- Andrés Riancho Founder, Bonsai - Information Security http://www.bonsai-sec.com/ http://w3af.sf.net/ ------------------------------------------------------------------------------ Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day trial. Simplify your report design, integration and deployment - and focus on what you do best, core application coding. Discover what's new with Crystal Reports now. http://p.sf.net/sfu/bobj-july _______________________________________________ W3af-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/w3af-users
