LTCgear WPscan

1. _______________________________________________________________
2. __ _______ _____
3. \ \ / / __ \ / ____|
4. \ \ /\ / /| |__) | (___ ___ __ _ _ __
5. \ \/ \/ / | ___/ \___ \ / __|/ _` | '_ \
6. \ /\ / | | ____) | (__| (_| | | | |
7. \/ \/ |_| |_____/ \___|\__,_|_| |_|
8.  
9. WordPress Security Scanner by the WPScan Team
10. Version 2.6
11. Sponsored by Sucuri - https://sucuri.net
12. @_WPScan_, @ethicalhack3r, @erwan_lr, pvdl, @_FireFart_
13. _______________________________________________________________
14.  
15. [+] URL: http://ltcgear.com/
16. [+] Started: Tue Jan 27 18:13:03 2015
17.  
18. [+] robots.txt available under: 'http://ltcgear.com/robots.txt'
19. [!] The WordPress 'http://ltcgear.com/readme.html' file exists exposing a version number
20. [+] Interesting header: SERVER: nginx/1.0.15
21. [+] Interesting header: X-POWERED-BY: PHP/5.4.35-0+deb7u2
22. [+] XML-RPC Interface available under: http://ltcgear.com/xmlrpc.php
23.  
24. [+] WordPress version 4.1 identified from meta generator
25.  
26. [+] WordPress theme in use: woostore - v1.8.1
27.  
28. [+] Name: woostore - v1.8.1
29. | Location: http://ltcgear.com/wp-content/themes/woostore/
30. | Changelog: http://ltcgear.com/wp-content/themes/woostore/changelog.txt
31. | Style URL: http://ltcgear.com/wp-content/themes/woostore/style.css
32. | Theme Name: WooStore
33. | Theme URI: http://www.woothemes.com/
34. | Description: Designed by <a href="http://www.jepson.no">Magnus Jepson</a>.
35. | Author: WooThemes
36. | Author URI: http://www.woothemes.com
37.  
38. [!] Title: WooThemes WooFramework Remote Unauthenticated Shortcode Execution
39. Reference: https://wpvulndb.com/vulnerabilities/7358
40. Reference: https://gist.github.com/2523147
41.  
42. [+] Enumerating installed plugins ...
43.  
44. Time: 00:01:57 <=========================================> (2176 / 2176) 100.00% Time: 00:01:57
45.  
46. [+] We found 14 plugins:
47.  
48. [+] Name: adminer - v1.3.2
49. | Location: http://ltcgear.com/wp-content/plugins/adminer/
50. | Readme: http://ltcgear.com/wp-content/plugins/adminer/readme.txt
51.  
52. [+] Name: akismet - v3.0.4
53. | Location: http://ltcgear.com/wp-content/plugins/akismet/
54. | Readme: http://ltcgear.com/wp-content/plugins/akismet/readme.txt
55.  
56. [+] Name: captcha - v4.0.8
57. | Location: http://ltcgear.com/wp-content/plugins/captcha/
58. | Readme: http://ltcgear.com/wp-content/plugins/captcha/readme.txt
59.  
60. [+] Name: export-user-data - v1.1.1
61. | Location: http://ltcgear.com/wp-content/plugins/export-user-data/
62. | Readme: http://ltcgear.com/wp-content/plugins/export-user-data/readme.txt
63.  
64. [+] Name: feed
65. | Location: http://ltcgear.com/wp-content/plugins/feed/
66.  
67. [+] We could not determine a version so all vulnerabilities are printed out
68.  
69. [!] Title: Feed - news_dt.php nid Parameter SQL Injection
70. Reference: https://wpvulndb.com/vulnerabilities/6965
71. Reference: http://packetstormsecurity.com/files/122260/
72. Reference: http://osvdb.org/94804
73.  
74. [+] Name: import-users-from-csv-with-meta - v1.1.6
75. | Location: http://ltcgear.com/wp-content/plugins/import-users-from-csv-with-meta/
76. | Readme: http://ltcgear.com/wp-content/plugins/import-users-from-csv-with-meta/readme.txt
77.  
78. [+] Name: mycred - v1.5.4
79. | Location: http://ltcgear.com/wp-content/plugins/mycred/
80. | Readme: http://ltcgear.com/wp-content/plugins/mycred/readme.txt
81.  
82. [+] Name: simple-backup - v2.7.8
83. | Location: http://ltcgear.com/wp-content/plugins/simple-backup/
84. | Readme: http://ltcgear.com/wp-content/plugins/simple-backup/readme.txt
85.  
86. [+] Name: under-construction-page - v3.2
87. | Location: http://ltcgear.com/wp-content/plugins/under-construction-page/
88. | Readme: http://ltcgear.com/wp-content/plugins/under-construction-page/readme.txt
89.  
90. [+] Name: underconstruction - v1.12
91. | Location: http://ltcgear.com/wp-content/plugins/underconstruction/
92. | Readme: http://ltcgear.com/wp-content/plugins/underconstruction/readme.txt
93.  
94. [+] Name: wassup - v1.8.6
95. | Location: http://ltcgear.com/wp-content/plugins/wassup/
96. | Readme: http://ltcgear.com/wp-content/plugins/wassup/readme.txt
97.  
98. [!] Title: WassUp 1.4.3 - (spy.php to_date) SQL Injection Exploit
99. Reference: https://wpvulndb.com/vulnerabilities/6492
100. Reference: http://www.exploit-db.com/exploits/5017/
101.  
102. [+] Name: woocommerce - v2.2.10
103. | Location: http://ltcgear.com/wp-content/plugins/woocommerce/
104. | Readme: http://ltcgear.com/wp-content/plugins/woocommerce/readme.txt
105.  
106. [!] Title: WooCommerce <= 2.2.2 - Reflected XSS
107. Reference: https://wpvulndb.com/vulnerabilities/7699
108. Reference: http://seclists.org/fulldisclosure/2014/Sep/59
109. Reference: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-6313
110. Reference: https://secunia.com/advisories/61377
111. Reference: http://osvdb.org/111611
112.  
113. [+] Name: woocommerce-simple-auctions
114. | Location: http://ltcgear.com/wp-content/plugins/woocommerce-simple-auctions/
115. | Readme: http://ltcgear.com/wp-content/plugins/woocommerce-simple-auctions/readme.txt
116. | Changelog: http://ltcgear.com/wp-content/plugins/woocommerce-simple-auctions/changelog.txt
117.  
118. [+] Name: wpmandrill - v1.33
119. | Location: http://ltcgear.com/wp-content/plugins/wpmandrill/
120. | Readme: http://ltcgear.com/wp-content/plugins/wpmandrill/readme.txt
121.  
122. [+] Finished: Tue Jan 27 18:15:32 2015