how to begin scan a url?

[GoogleCodeExporter]

i can't begin?

Scan Details:
Status: Pending...

No. URLs Found: 0
Time Taken: 1:48
No. HTTP Requests Sent: 0
No. Vulnerabilities Found: 0

No Vulnerabilities Found Yet

Original issue reported on code.google.com by sechacking@gmail.com on 14 May 2012 at 3:17

[GoogleCodeExporter]

Hello,

Is the database connected properly? Is the crawler feature working?

Also, if you request "http://localhost/webvulscan_v0.11/scanner/begin_scan.php" 
(assuming you are running it on localhost), do you get any PHP errors?

Original comment by webvuls...@gmail.com on 14 May 2012 at 1:31

[GoogleCodeExporter]

I get the same result. I did go and try out the begin_scan.php, and get the 
following. I had to edit all of the php files so far to correct the paths to 
relative ones (no leading /) to get it working at all. Here is the error I get 
with begin_scan.php now:

Deprecated: Assigning the return value of new by reference is deprecated in 
/opt/lampp/htdocs/webvulnscan/scanner/begin_scan.php on line 97

Deprecated: Assigning the return value of new by reference is deprecated in 
/opt/lampp/htdocs/webvulnscan/crawler/PHPCrawl_071/classes/phpcrawler.class.php 
on line 151

Warning: require_once(/../../../scanner/functions/databaseFunctions.php) 
[function.require-once]: failed to open stream: No such file or directory in 
/opt/lampp/htdocs/webvulnscan/crawler/PHPCrawl_071/classes/phpcrawler.class.php 
on line 25

Fatal error: require_once() [function.require]: Failed opening required 
'/../../../scanner/functions/databaseFunctions.php' 
(include_path='.:/opt/lampp/lib/php') in 
/opt/lampp/htdocs/webvulnscan/crawler/PHPCrawl_071/classes/phpcrawler.class.php 
on line 25

Original comment by renob...@gmail.com on 14 May 2012 at 2:27

[GoogleCodeExporter]

I am very surprised you had to edit all the paths as I re-deployed the 
application on a newly installed web server, using my instructions and the 
downloadable source code, to ensure it would work for others. I have just 
downloaded it again and placed it into my htdocs folder to double check and it 
works for me. Perhaps it is something to do with the development environment 
you are using. The application was developed and tested using XAMPP 1.7.4 
running on Windows.

Anyway, the "Deprecated" errors do not matter as far as I know. I am getting 
them also. I assume the fatal error and the warning are the reason that a scan 
won't begin. In "phpcrawler.class.php", if you set the parameter of the 
"require_once" function equal the correct path for the "databaseFunctions.php" 
script, it will remove this error and that should solve the problem.

Original comment by webvuls...@gmail.com on 14 May 2012 at 9:22

• Changed state: Accepted

[GoogleCodeExporter]

I'm on XAMPP on Ubuntu 12.04, but am by no means an expert on it. Just hacked 
around until I could get the webapp up. When I change to the relative path:

functions/databaseFunctions.php

I get the above error. When I do the absolute path:

/opt/lampp/htdocs/webvulnscan/scanner/functions/databaseFunctions.php

I get the same error.

Original comment by renob...@gmail.com on 14 May 2012 at 9:27

[GoogleCodeExporter]

Could you try 

"/../../../../scanner/functions/databaseFunctions.php"

and

"../../scanner/functions/databaseFunctions.php"

Original comment by webvuls...@gmail.com on 14 May 2012 at 9:51

• Added labels: Priority-Low, Type-Other
• Removed labels: Priority-Medium, Type-Defect

[GoogleCodeExporter]

maybe it's a php's problem.i'm use php 5.4 in my windows.
and the file Many a & symbols.

Original comment by sechacking@gmail.com on 15 May 2012 at 2:22

[GoogleCodeExporter]

Could you try

"scanner/functions/databaseFunctions.php"

Original comment by oht...@gmail.com on 15 May 2012 at 2:24

[GoogleCodeExporter]

@7 try how?

Original comment by sechacking@gmail.com on 15 May 2012 at 2:29

[GoogleCodeExporter]

I had the same problem too, Status: Pending... 

I had these errors :

PHP Deprecated:  Assigning the return value of new by reference is deprecated 
in webvulscan\\scanner\\begin_scan.php on line 97
PHP Deprecated:  Assigning the return value of new by reference is deprecated 
in webvulscan\\crawler\\PHPCrawl_071\\classes\\phpcrawler.class.php on line 151
PHP Fatal error:  Call-time pass-by-reference has been removed in 
webvulscan\\scanner\\classes\\httpclient-2011-08-21\\http.php on line 1048

I had to remove the & sign and now it is working

Original comment by bartot...@gmail.com on 15 May 2012 at 7:53

[GoogleCodeExporter]

All of the above combinations of xx/functions/databaseFunctions.php still give 
me the same error.

Original comment by renob...@gmail.com on 15 May 2012 at 12:41

[GoogleCodeExporter]

Did you try replace "/../../../scanner/functions/databaseFunctions.php" with 
"../../../scanner/functions/databaseFunctions.php"? (by just removing the first 
forward slash)

Original comment by webvuls...@gmail.com on 15 May 2012 at 8:54

[GoogleCodeExporter]

Same result.

Original comment by renob...@gmail.com on 15 May 2012 at 9:11

[GoogleCodeExporter]

I thought as much. I can try setting it up in Ubuntu when I get a chance to see 
if I get the same problem. I may have to make a different release for Unix 
O/S's. Unfortunately, I am very busy with study and exams at the moment though 
but might get a chance in the next week or two. Until then, if you're eager to 
use the software and can't resolve the issue, you could run it on XAMPP on 
Windows.

Original comment by webvuls...@gmail.com on 15 May 2012 at 9:25

[GoogleCodeExporter]

I loaded up the Windows version of XAMPP, and it works quite well. Thanks for 
the help.

Original comment by renob...@gmail.com on 18 May 2012 at 2:24

[GoogleCodeExporter]

Good, I think I know the solution to your problem anyway. One user has fixed it 
by simply adding a full stop to the beginning of the path.

e.g. change  

require_once('/scanner/functions/databaseFunctions.php');

to

require_once('./scanner/functions/databaseFunctions.php');

It's better to reference ./ as the current directory so that would work on 
every system. This will be changed in the next release.

Original comment by webvuls...@gmail.com on 18 May 2012 at 2:34

[GoogleCodeExporter]

Original comment by webvuls...@gmail.com on 21 May 2012 at 12:07

• Added labels: Priority-Medium
• Removed labels: Priority-Low

[GoogleCodeExporter]

Use a $HOME_DIR or $ROOT_DIR variable to reference $PATH please! 

And We suggest to put a readme.txt file (no .docx please!) with 
requeriments/install instructions.

We have some problems to start in FreeBSD9 + php-fpm + nginx + php 5.4.

Thank you.

Original comment by vicente....@nixval.com on 22 May 2012 at 11:59

[GoogleCodeExporter]

Be careful!!!!

Windows OS is not case sensitive and unix/linux systems are case sensitive.

Please, you MUST consider this point because your system path and your 
include_path are different colleague.

;)

Original comment by vicente....@nixval.com on 22 May 2012 at 2:15

[GoogleCodeExporter]

[deleted comment]

[GoogleCodeExporter]

Thanks for the feedback/suggestions. These issues will be addressed in the next 
release.

Original comment by webvuls...@gmail.com on 24 May 2012 at 6:54

[GoogleCodeExporter]

www-data / your apache user need write access to some directories ( at least 
log directories in ./scanner and ./crawler

Original comment by chk.mail...@gmail.com on 30 May 2012 at 7:56

[GoogleCodeExporter]

Thanks I will look into that.

Original comment by webvuls...@gmail.com on 31 May 2012 at 2:24

[GoogleCodeExporter]

how to abort a scanning process using a button?

Original comment by arpate...@gmail.com on 1 Apr 2014 at 8:47

[GoogleCodeExporter]

Hi,

This feature is not available unfortunately.

Original comment by webvuls...@gmail.com on 1 Apr 2014 at 10:51