-
Hello, I was wondering is it possible to detect All Wordpress Plugins that are being used for a given URL?
For instance, similar to wpscan, that detects old versions of plugins from a given url.
Th…
-
https://blogs.gentoo.org/ago/2020/07/04/gentoo-tinderbox/
Issue: net-analyzer/wpscan-3.8.19 fails tests.
Discovered on: amd64 (internal ref: pentoo_tinderbox)
At the time of writing, github-cli does…
-
From WP Scan:
The external WP-Cron seems to be enabled: https://events.linuxfoundation.org/wp/wp-cron.php
| Found By: Direct Access (Aggressive Detection)
| Confidence: 60%
| References:
|…
-
Add documentation and resources from the application security class.
**Topics:**
- [ ] Introduction to Secure Software Development Cycle
- [ ] SQL Injection
- [ ] MongoDb Query Injection
- [x]…
-
THESE ARE BREAKING CHANGES
**Change 1**
Currently we run a bunch of things when supplying no arguments.
The proposed change would not run anything when no arguments are supplied, and only run…
-
It would be cool if the WPScan output whether a poc exists or not for a given vulnerability
-
When I do a scan I get some results, but then this error pops up:
I am on Kali version 2019.4.
Traceback (most recent call last):
File "wordpresscan.py", line 62, in
Scan_Engine(wp, resul…
-
We should link to the new status page https://status.wpscan.com/ when there are connections errors with the api
-
I couldn't find a script linked that used the hashes to determine the remote version of a Magento installation, so I wrote a quick one that might save some other users' time.
https://gist.github.co…
-
Hi Chet,
There's a security issue with Freemius
see - https://wpscan.com/vulnerability/6dae6dca-7474-4008-9fe5-4c62b9f12d0a
Do you have any plans to maintain this plugin?
I noticed that suppor…