Closed raadsec closed 1 year ago
The --stealthy option will only perform passive detection, so some plugins might not be detected. You should use --plugins-detection mixed
instead. Be aware that due to the --enumerate ap
, all plugins will be checked, which could take some time
Btw, any reason to use the --wp-content-dir
and --wp-plugins-dir
options with their default values ?
In general the tool is unable to detect plugins, so i used the mentioned arguments in order to play around and make the tool work, but unfortunately no success
Same issue here with the site blog.terabox.com (for a bug bounty), not detecting any of the plugins. I've tried a combination of all the above-specified options. I ran a nuclei scan with the wordpress workflow and it does find the outdated plugins so I'm not sure why wpscan can't.
Command:
wpscan --random-user-agent --force --plugins-detection mixed -o /tmp/wpscan_2023_09_05-09_03_40_348948_AM.json --url https://blog.terabox.com/ -f json --max-threads 50
I ran a test enumerating the most popular plugins on the given site, and I found several. I used the following command.
@raadsec @ocervell could you please confirm whether the command works for you?
wpscan --random-user-agent --force --plugins-detection mixed -e p --url https://blog.terabox.com
It's working on the latest update, thanks !
Good to hear! Feel free to reach out again if you run into further issues 🙂
I am using WPScan to scan a vulnerable WordPress site that contains vulnerable plugin installed. The tool didn't detect any plugins at all
Command that i am using:
wpscan --url http://site/ --wp-content-dir wp-content --enumerate ap --clear-cache --wp-plugins-dir wp-content/plugins --stealthy --random-user-agent