Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- root@debian75:~/tool/wpscan# ./wpscan.rb -u http://visinteriors.com
- _______________________________________________________________
- __ _______ _____
- \ \ / / __ \ / ____|
- \ \ /\ / /| |__) | (___ ___ __ _ _ __
- \ \/ \/ / | ___/ \___ \ / __|/ _` | '_ \
- \ /\ / | | ____) | (__| (_| | | | |
- \/ \/ |_| |_____/ \___|\__,_|_| |_|
- WordPress Security Scanner by the WPScan Team
- Version v2.4.1r8f51ff2
- Sponsored by the RandomStorm Open Source Initiative
- @_WPScan_, @ethicalhack3r, @erwan_lr, pvdl, @_FireFart_
- _______________________________________________________________
- [+] URL: http://visinteriors.com/
- [+] Started: Sun Jun 1 10:14:56 2014
- [+] robots.txt available under: 'http://visinteriors.com/robots.txt'
- [+] Interesting entry from robots.txt: http://visinteriors.com/go/
- [!] Full Path Disclosure (FPD) in: 'http://visinteriors.com/wp-includes/rss-functions.php'
- [+] Interesting header: SERVER: Apache
- [+] XML-RPC Interface available under: http://visinteriors.com/xmlrpc.php
- [+] WordPress version 3.6.1 identified from meta generator
- [+] WordPress theme in use: visinterior
- [+] Name: visinterior
- | Location: http://visinteriors.com/wp-content/themes/visinterior/
- [!] Directory listing is enabled: http://visinteriors.com/wp-content/themes/visinterior/
- | Style URL: http://visinteriors.com/wp-content/themes/visinterior/style.css
- | Theme Name: visinterior
- | Description: Author: vis interior
- | Author: vis interior
- [+] Detected parent theme: visinteriors - v2.7.2
- [+] Name: visinteriors - v2.7.2
- | Location: http://visinteriors.com/wp-content/themes/visinteriors/
- | Style URL: http://visinteriors.com/wp-content/themes/visinteriors/style.css
- | Theme Name: Valerie
- | Theme URI: http://umbrella.al/
- | Description: Valerie theme from Umbrella
- | Author: Umbrella
- | Author URI: http://umbrella.al/
- [+] Enumerating plugins from passive detection ...
- | 3 plugins found:
- [+] Name: db-prefix-change - v1.1
- | Location: http://visinteriors.com/wp-content/plugins/db-prefix-change/
- | Readme: http://visinteriors.com/wp-content/plugins/db-prefix-change/readme.txt
- [!] Directory listing is enabled: http://visinteriors.com/wp-content/plugins/db-prefix-change/
- [+] Name: gallery-plugin - v4.1.5
- | Location: http://visinteriors.com/wp-content/plugins/gallery-plugin/
- | Readme: http://visinteriors.com/wp-content/plugins/gallery-plugin/readme.txt
- [!] Directory listing is enabled: http://visinteriors.com/wp-content/plugins/gallery-plugin/
- [!] Title: Gallery 3.06 - gallery-plugin/upload/php.php File Upload PHP Code Execution
- Reference: http://osvdb.org/82661
- Reference: http://www.exploit-db.com/exploits/18998/
- [!] Title: Gallery Plugin 3.8.3 - gallery-plugin.php filename_1 Parameter Arbitrary File Access
- Reference: http://packetstormsecurity.com/files/119458/
- Reference: http://www.securityfocus.com/bid/57256
- Reference: http://seclists.org/bugtraq/2013/Jan/45
- Reference: http://osvdb.org/89124
- [+] Name: wp-slimstat - v3.4.1
- | Location: http://visinteriors.com/wp-content/plugins/wp-slimstat/
- | Readme: http://visinteriors.com/wp-content/plugins/wp-slimstat/readme.txt
- [!] Title: WP SlimStat 3.5.5 - Overview URI Stored XSS
- Reference: http://secunia.com/advisories/57305
- Reference: http://osvdb.org/104428
- [i] Fixed in: 3.5.6
- [+] Finished: Sun Jun 1 10:15:32 2014
- [+] Memory used: 1.961 MB
- [+] Elapsed time: 00:00:36
- root@debian75:~/tool/wpscan#
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement