Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- [+] http://aacd.websiteseguro.com/
- | Interesting Entries:
- | - Server: Apache/2.2.22 (Debian)
- | - X-Powered-By: PHP/5.4.45-0+deb7u14
- | Found By: Headers (Passive Detection)
- | Confidence: 100%
- [+] http://aacd.websiteseguro.com/robots.txt
- | Found By: Robots Txt (Aggressive Detection)
- | Confidence: 100%
- [+] http://aacd.websiteseguro.com/xmlrpc.php
- | Found By: Direct Access (Aggressive Detection)
- | Confidence: 100%
- | References:
- | - http://codex.wordpress.org/XML-RPC_Pingback_API
- | - https://www.rapid7.com/db/modules/auxiliary/scanner/http/wordpress_ghost_scanner
- | - https://www.rapid7.com/db/modules/auxiliary/dos/http/wordpress_xmlrpc_dos
- | - https://www.rapid7.com/db/modules/auxiliary/scanner/http/wordpress_xmlrpc_login
- | - https://www.rapid7.com/db/modules/auxiliary/scanner/http/wordpress_pingback_access
- [+] http://aacd.websiteseguro.com/readme.html
- | Found By: Direct Access (Aggressive Detection)
- | Confidence: 100%
- [+] Upload directory has listing enabled: http://aacd.websiteseguro.com/wp-content/uploads/
- | Found By: Direct Access (Aggressive Detection)
- | Confidence: 100%
- [+] http://aacd.websiteseguro.com/wp-cron.php
- | Found By: Direct Access (Aggressive Detection)
- | Confidence: 60%
- | References:
- | - https://www.iplocation.net/defend-wordpress-from-ddos
- | - https://github.com/wpscanteam/wpscan/issues/1299
- [+] WordPress version 4.9.10 identified (Latest, released on 2019-03-13).
- | Detected By: Emoji Settings (Passive Detection)
- | - http://aacd.websiteseguro.com/, Match: '-release.min.js?ver=4.9.10'
- | Confirmed By: Atom Generator (Aggressive Detection)
- | - http://aacd.websiteseguro.com/?feed=atom, <generator uri="https://wordpress.org/" version="4.9.10">WordPress</generator>
- [i] The main theme could not be detected.
- [+] Enumerating Vulnerable Plugins (via Passive Methods)
- [+] Checking Plugin Versions (via Passive and Aggressive Methods)
- [i] Plugin(s) Identified:
- [+] w3-total-cache
- | Location: http://aacd.websiteseguro.com/wp-content/plugins/w3-total-cache/
- | Last Updated: 2019-05-06T14:04:00.000Z
- | [!] The version is out of date, the latest version is 0.9.7.4
- |
- | Detected By: Comment Debug Info (Passive Detection)
- |
- | [!] 11 vulnerabilities identified:
- |
- | [!] Title: W3 Total Cache <= 0.9.4.1 - Authenticated Reflected Cross-Site Scripting (XSS)
- | Fixed in: 0.9.5
- | References:
- | - https://wpvulndb.com/vulnerabilities/8625
- | - https://blog.zerial.org/seguridad/vulnerabilidad-cross-site-scripting-en-wordpress-w3-total-cache/
- | - http://seclists.org/fulldisclosure/2016/Sep/52
- | - https://sumofpwn.nl/advisory/2016/reflected_cross_site_scripting_vulnerability_in_w3_total_cache_plugin.html
- | - http://seclists.org/fulldisclosure/2016/Nov/63
- |
- | [!] Title: W3 Total Cache <= 0.9.4.1 – Unauthenticated Security Token Bypass
- | Fixed in: 0.9.5
- | References:
- | - https://wpvulndb.com/vulnerabilities/8626
- | - https://secupress.me/blog/4-new-security-flaws-w3-total-cache-0-9-4-1/
- |
- | [!] Title: W3 Total Cache <= 0.9.4.1 – Authenticated Arbitrary File Upload
- | Fixed in: 0.9.5
- | References:
- | - https://wpvulndb.com/vulnerabilities/8627
- | - https://secupress.me/blog/4-new-security-flaws-w3-total-cache-0-9-4-1/
- |
- | [!] Title: W3 Total Cache <= 0.9.4.1 – Authenticated Arbitrary File Download
- | Fixed in: 0.9.5
- | References:
- | - https://wpvulndb.com/vulnerabilities/8628
- | - https://secupress.me/blog/4-new-security-flaws-w3-total-cache-0-9-4-1/
- |
- | [!] Title: W3 Total Cache <= 0.9.4.1 – Authenticated Arbitrary PHP Code Execution
- | Fixed in: 0.9.5
- | References:
- | - https://wpvulndb.com/vulnerabilities/8629
- | - https://secupress.me/blog/4-new-security-flaws-w3-total-cache-0-9-4-1/
- |
- | [!] Title: W3 Total Cache <= 0.9.4 - Unauthenticated Server Side Request Forgery (SSRF)
- | Fixed in: 0.9.5
- | References:
- | - https://wpvulndb.com/vulnerabilities/8644
- | - https://klikki.fi/adv/w3_total_cache.html
- |
- | [!] Title: W3 Total Cache <= 0.9.4.1 - Weak Validation of Amazon SNS Push Messages
- | Fixed in: 0.9.5
- | References:
- | - https://wpvulndb.com/vulnerabilities/8654
- | - https://sumofpwn.nl/advisory/2016/weak_validation_of_amazon_sns_push_messages_in_w3_total_cache_wordpress_plugin.html
- | - http://seclists.org/fulldisclosure/2016/Nov/61
- |
- | [!] Title: W3 Total Cache <= 0.9.4.1 - Information Disclosure Race Condition
- | Fixed in: 0.9.5
- | References:
- | - https://wpvulndb.com/vulnerabilities/8655
- | - https://sumofpwn.nl/advisory/2016/information_disclosure_race_condition_in_w3_total_cache_wordpress_plugin.html
- | - http://seclists.org/fulldisclosure/2016/Nov/62
- |
- | [!] Title: W3 Total Cache < 0.9.7.3 - Cryptographic Signature Bypass
- | Fixed in: 0.9.7.4
- | References:
- | - https://wpvulndb.com/vulnerabilities/9271
- | - https://plugins.trac.wordpress.org/changeset/2081515/w3-total-cache#file21
- |
- | [!] Title: W3 Total Cache <= 0.9.7.3 - Cross-Site Scripting (XSS)
- | Fixed in: 0.9.7.4
- | References:
- | - https://wpvulndb.com/vulnerabilities/9269
- | - https://plugins.trac.wordpress.org/changeset/2081515/w3-total-cache#file24
- |
- | [!] Title: W3 Total Cache <= 0.9.7.3 - SSRF / RCE via phar
- | Fixed in: 0.9.7.4
- | References:
- | - https://wpvulndb.com/vulnerabilities/9270
- | - https://plugins.trac.wordpress.org/changeset/2081515/w3-total-cache#file24
- |
- | Version: 0.9.4.1 (100% confidence)
- | Detected By: Readme - Stable Tag (Aggressive Detection)
- | - http://aacd.websiteseguro.com/wp-content/plugins/w3-total-cache/readme.txt
- | Confirmed By: Readme - ChangeLog Section (Aggressive Detection)
- | - http://aacd.websiteseguro.com/wp-content/plugins/w3-total-cache/readme.txt
- [+] wordpress-seo
- | Location: http://aacd.websiteseguro.com/wp-content/plugins/wordpress-seo/
- | Last Updated: 2019-05-16T11:05:00.000Z
- | [!] The version is out of date, the latest version is 11.2.1
- |
- | Detected By: Comment (Passive Detection)
- |
- | [!] 2 vulnerabilities identified:
- |
- | [!] Title: Yoast SEO <= 5.7.1 - Authenticated Cross-Site Scripting (XSS)
- | Fixed in: 5.8
- | References:
- | - https://wpvulndb.com/vulnerabilities/8960
- | - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16842
- | - https://plugins.trac.wordpress.org/changeset/1766831/wordpress-seo/trunk/admin/google_search_console/class-gsc-table.php
- | - https://packetstormsecurity.com/files/145080/WordPress-Yoast-SEO-Cross-Site-Scripting.html
- |
- | [!] Title: Yoast SEO <= 9.1 - Authenticated Race Condition
- | Fixed in: 9.2
- | References:
- | - https://wpvulndb.com/vulnerabilities/9150
- | - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19370
- | - https://plugins.trac.wordpress.org/changeset/1977260/wordpress-seo
- | - https://www.youtube.com/watch?v=nL141dcDGCY
- | - http://packetstormsecurity.com/files/150497/
- | - https://github.com/Yoast/wordpress-seo/pull/11502/commits/3bfa70a143f5ea3ee1934f3a1703bb5caf139ffa
- |
- | Version: 3.5 (100% confidence)
- | Detected By: Comment (Passive Detection)
- | - http://aacd.websiteseguro.com/, Match: 'optimized with the Yoast SEO plugin v3.5 -'
- | Confirmed By:
- | Readme - Stable Tag (Aggressive Detection)
- | - http://aacd.websiteseguro.com/wp-content/plugins/wordpress-seo/readme.txt
- | Readme - ChangeLog Section (Aggressive Detection)
- | - http://aacd.websiteseguro.com/wp-content/plugins/wordpress-seo/readme.txt
- [+] youtube-embed-plus
- | Location: http://aacd.websiteseguro.com/wp-content/plugins/youtube-embed-plus/
- | Last Updated: 2019-05-11T14:32:00.000Z
- | [!] The version is out of date, the latest version is 13.1
- |
- | Detected By: Javascript Var (Passive Detection)
- |
- | [!] 1 vulnerability identified:
- |
- | [!] Title: YouTube Embed <= 11.8.1 - Cross-Site Request Forgery (CSRF)
- | Fixed in: 11.8.2
- | References:
- | - https://wpvulndb.com/vulnerabilities/8873
- | - https://security.dxw.com/advisories/csrf-in-youtube-plugin/
- | - http://seclists.org/fulldisclosure/2017/Jul/64
- |
- | Version: 11.4 (100% confidence)
- | Detected By: Javascript Var (Passive Detection)
- | - http://aacd.websiteseguro.com/, Match: 'vol":"1","version":"11.4","evselector":"ifra'
- | Confirmed By: Readme - Stable Tag (Aggressive Detection)
- | - http://aacd.websiteseguro.com/wp-content/plugins/youtube-embed-plus/readme.txt
- [+] Enumerating Vulnerable Themes (via Passive and Aggressive Methods)
- Checking Known Locations - Time: 00:00:44 <============================================================> (290 / 290) 100.00% Time: 00:00:44
- [+] Checking Theme Versions (via Passive and Aggressive Methods)
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement