API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Jul 20th, 2018
566
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 27.87 KB | None | 0 0
raw download clone embed print report
  1. _______________________________________________________________
  2. __ _______ _____
  3. \ \ / / __ \ / ____|
  4. \ \ /\ / /| |__) | (___ ___ __ _ _ __ ®
  5. \ \/ \/ / | ___/ \___ \ / __|/ _` | '_ \
  6. \ /\ / | | ____) | (__| (_| | | | |
  7. \/ \/ |_| |_____/ \___|\__,_|_| |_|
  8.  
  9. WordPress Security Scanner by the WPScan Team
  10. Version 2.9.4
  11. Sponsored by Sucuri - https://sucuri.net
  12. @_WPScan_, @ethicalhack3r, @erwan_lr, @_FireFart_
  13. _______________________________________________________________
  14.  
  15.  
  16. [i] It seems like you have not updated the database for some time
  17. [?] Do you want to update now? [Y]es [N]o [A]bort update, default: [N] > Y
  18. [i] Updating the Database ...
  19. [i] Update completed
  20. [+] URL: https://www.pivert-store.com/
  21. [+] Started: Fri Jul 20 17:58:24 2018
  22.  
  23. [+] Interesting header: CF-RAY: 43d6a10e7baa3c6b-CDG
  24. [+] Interesting header: EXPECT-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
  25. [+] Interesting header: LINK: <https://www.pivert-store.com/>; rel=shortlink
  26. [+] Interesting header: SERVER: cloudflare
  27. [+] Interesting header: X-CACHE-STATUS: BYPASS
  28. [+] Interesting header: X-POWERED-BY: PHP/7.0.30
  29. [+] Interesting header: X-POWERED-BY: PleskLin
  30. [+] robots.txt available under: https://www.pivert-store.com/robots.txt [HTTP 200]
  31. [+] Interesting entry from robots.txt: https://www.pivert-store.com/author/ [HTTP 404]
  32. [+] Interesting entry from robots.txt: https://www.pivert-store.com/tag/ [HTTP 404]
  33. [+] Sitemap found: https://www.pivert-store.com/robots.txt [HTTP 200]
  34. [+] Sitemap entry: https://www.pivert-store.com/sitemap_index.xml [HTTP 200]
  35. [+] XML-RPC Interface available under: https://www.pivert-store.com/xmlrpc.php [HTTP 405]
  36. [+] API exposed: https://www.pivert-store.com/wp-json/ [HTTP 200]
  37. [+] Found an RSS Feed: https://www.pivert-store.com/feed [HTTP 200]
  38. [!] Detected 1 user from RSS feed:
  39. +--------------+
  40. | Name |
  41. +--------------+
  42. | pivert_store |
  43. +--------------+
  44.  
  45. [+] Enumerating WordPress version ...
  46.  
  47. [+] WordPress version 3.4.1 (Released on 2012-06-27) identified from stylesheets numbers
  48. [!] 41 vulnerabilities identified from the version number
  49.  
  50. [!] Title: Wordpress 3.4 - 3.5.1 /wp-admin/users.php Malformed s Parameter Path Disclosure
  51. Reference: https://wpvulndb.com/vulnerabilities/5978
  52. Reference: http://seclists.org/fulldisclosure/2013/Jul/70
  53. [i] Fixed in: 3.5.2
  54.  
  55. [!] Title: WordPress 3.4 - 3.5.1 DoS in class-phpass.php
  56. Reference: https://wpvulndb.com/vulnerabilities/5986
  57. Reference: http://seclists.org/fulldisclosure/2013/Jun/65
  58. Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2173
  59. Reference: https://secunia.com/advisories/53676/
  60. [i] Fixed in: 3.5.2
  61.  
  62. [!] Title: WordPress 3.3.2 - 3.5 Cross-Site Scripting (XSS) (Issue 3)
  63. Reference: https://wpvulndb.com/vulnerabilities/5987
  64. Reference: https://github.com/wpscanteam/wpscan/wiki/WordPress-3.5-Issues
  65.  
  66. [!] Title: WordPress 1.5.1 - 3.5 XMLRPC Pingback API Internal/External Port Scanning
  67. Reference: https://wpvulndb.com/vulnerabilities/5988
  68. Reference: https://github.com/FireFart/WordpressPingbackPortScanner
  69. Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0235
  70. [i] Fixed in: 3.5.1
  71.  
  72. [!] Title: WordPress 1.5.1 - 3.5 XMLRPC pingback additional issues
  73. Reference: https://wpvulndb.com/vulnerabilities/5989
  74. Reference: http://lab.onsec.ru/2013/01/wordpress-xmlrpc-pingback-additional.html
  75.  
  76. [!] Title: WordPress 3.0 - 3.6 Crafted String URL Redirect Restriction Bypass
  77. Reference: https://wpvulndb.com/vulnerabilities/5970
  78. Reference: http://packetstormsecurity.com/files/123589/
  79. Reference: http://core.trac.wordpress.org/changeset/25323
  80. Reference: http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/91609
  81. Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4339
  82. Reference: https://secunia.com/advisories/54803/
  83. Reference: https://www.exploit-db.com/exploits/28958/
  84. [i] Fixed in: 3.6.1
  85.  
  86. [!] Title: WordPress Plupload Unspecified XSS
  87. Reference: https://wpvulndb.com/vulnerabilities/5966
  88. Reference: https://secunia.com/advisories/57769/
  89. [i] Fixed in: 3.5.1
  90.  
  91. [!] Title: WordPress 2.0.3 - 3.9.1 (except 3.7.4 / 3.8.4) CSRF Token Brute Forcing
  92. Reference: https://wpvulndb.com/vulnerabilities/7528
  93. Reference: https://core.trac.wordpress.org/changeset/29384
  94. Reference: https://core.trac.wordpress.org/changeset/29408
  95. Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-5204
  96. Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-5205
  97. [i] Fixed in: 3.9.2
  98.  
  99. [!] Title: WordPress 3.0 - 3.9.1 Authenticated Cross-Site Scripting (XSS) in Multisite
  100. Reference: https://wpvulndb.com/vulnerabilities/7529
  101. Reference: https://core.trac.wordpress.org/changeset/29398
  102. Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-5240
  103. [i] Fixed in: 3.9.2
  104.  
  105. [!] Title: WordPress 3.0-3.9.2 - Unauthenticated Stored Cross-Site Scripting (XSS)
  106. Reference: https://wpvulndb.com/vulnerabilities/7680
  107. Reference: http://klikki.fi/adv/wordpress.html
  108. Reference: https://wordpress.org/news/2014/11/wordpress-4-0-1/
  109. Reference: http://klikki.fi/adv/wordpress_update.html
  110. Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9031
  111. [i] Fixed in: 4.0
  112.  
  113. [!] Title: WordPress <= 4.0 - Long Password Denial of Service (DoS)
  114. Reference: https://wpvulndb.com/vulnerabilities/7681
  115. Reference: http://www.behindthefirewalls.com/2014/11/wordpress-denial-of-service-responsible-disclosure.html
  116. Reference: https://wordpress.org/news/2014/11/wordpress-4-0-1/
  117. Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9034
  118. Reference: https://www.rapid7.com/db/modules/auxiliary/dos/http/wordpress_long_password_dos
  119. Reference: https://www.exploit-db.com/exploits/35413/
  120. Reference: https://www.exploit-db.com/exploits/35414/
  121. [i] Fixed in: 4.0.1
  122.  
  123. [!] Title: WordPress <= 4.0 - Server Side Request Forgery (SSRF)
  124. Reference: https://wpvulndb.com/vulnerabilities/7696
  125. Reference: http://www.securityfocus.com/bid/71234/
  126. Reference: https://core.trac.wordpress.org/changeset/30444
  127. Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9038
  128. [i] Fixed in: 4.0.1
  129.  
  130. [!] Title: WordPress <= 4.2.2 - Authenticated Stored Cross-Site Scripting (XSS)
  131. Reference: https://wpvulndb.com/vulnerabilities/8111
  132. Reference: https://wordpress.org/news/2015/07/wordpress-4-2-3/
  133. Reference: https://twitter.com/klikkioy/status/624264122570526720
  134. Reference: https://klikki.fi/adv/wordpress3.html
  135. Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5622
  136. Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5623
  137. [i] Fixed in: 4.2.3
  138.  
  139. [!] Title: WordPress <= 4.4.2 - SSRF Bypass using Octal & Hexedecimal IP addresses
  140. Reference: https://wpvulndb.com/vulnerabilities/8473
  141. Reference: https://codex.wordpress.org/Version_4.5
  142. Reference: https://github.com/WordPress/WordPress/commit/af9f0520875eda686fd13a427fd3914d7aded049
  143. Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4029
  144. [i] Fixed in: 4.5
  145.  
  146. [!] Title: WordPress <= 4.4.2 - Reflected XSS in Network Settings
  147. Reference: https://wpvulndb.com/vulnerabilities/8474
  148. Reference: https://codex.wordpress.org/Version_4.5
  149. Reference: https://github.com/WordPress/WordPress/commit/cb2b3ed3c7d68f6505bfb5c90257e6aaa3e5fcb9
  150. Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6634
  151. [i] Fixed in: 4.5
  152.  
  153. [!] Title: WordPress <= 4.4.2 - Script Compression Option CSRF
  154. Reference: https://wpvulndb.com/vulnerabilities/8475
  155. Reference: https://codex.wordpress.org/Version_4.5
  156. Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6635
  157. Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6635 [316/536]
  158. [i] Fixed in: 4.5
  159.  
  160. [!] Title: WordPress 2.6.0-4.5.2 - Unauthorized Category Removal from Post
  161. Reference: https://wpvulndb.com/vulnerabilities/8520
  162. Reference: https://wordpress.org/news/2016/06/wordpress-4-5-3/
  163. Reference: https://github.com/WordPress/WordPress/commit/6d05c7521baa980c4efec411feca5e7fab6f307c
  164. Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5837
  165. [i] Fixed in: 4.5.3
  166.  
  167. [!] Title: WordPress 2.5-4.6 - Authenticated Stored Cross-Site Scripting via Image Filename
  168. Reference: https://wpvulndb.com/vulnerabilities/8615
  169. Reference: https://wordpress.org/news/2016/09/wordpress-4-6-1-security-and-maintenance-release/
  170. Reference: https://github.com/WordPress/WordPress/commit/c9e60dab176635d4bfaaf431c0ea891e4726d6e0
  171. Reference: https://sumofpwn.nl/advisory/2016/persistent_cross_site_scripting_vulnerability_in_wordpress_due_to_unsafe_processing_of_file_names.html
  172. Reference: http://seclists.org/fulldisclosure/2016/Sep/6
  173. Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7168
  174. [i] Fixed in: 4.6.1
  175.  
  176. [!] Title: WordPress 2.8-4.6 - Path Traversal in Upgrade Package Uploader
  177. Reference: https://wpvulndb.com/vulnerabilities/8616
  178. Reference: https://wordpress.org/news/2016/09/wordpress-4-6-1-security-and-maintenance-release/
  179. Reference: https://github.com/WordPress/WordPress/commit/54720a14d85bc1197ded7cb09bd3ea790caa0b6e
  180. Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7169
  181. [i] Fixed in: 4.6.1
  182.  
  183. [!] Title: WordPress 2.9-4.7 - Authenticated Cross-Site scripting (XSS) in update-core.php
  184. Reference: https://wpvulndb.com/vulnerabilities/8716
  185. Reference: https://github.com/WordPress/WordPress/blob/c9ea1de1441bb3bda133bf72d513ca9de66566c2/wp-admin/update-core.php
  186. Reference: https://wordpress.org/news/2017/01/wordpress-4-7-1-security-and-maintenance-release/
  187. Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5488
  188. [i] Fixed in: 4.7.1
  189.  
  190. [!] Title: WordPress 3.4-4.7 - Stored Cross-Site Scripting (XSS) via Theme Name fallback
  191. Reference: https://wpvulndb.com/vulnerabilities/8718
  192. Reference: https://www.mehmetince.net/low-severity-wordpress/
  193. Reference: https://wordpress.org/news/2017/01/wordpress-4-7-1-security-and-maintenance-release/
  194. Reference: https://github.com/WordPress/WordPress/commit/ce7fb2934dd111e6353784852de8aea2a938b359
  195. Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5490
  196. [i] Fixed in: 4.7.1
  197.  
  198. [!] Title: WordPress <= 4.7 - Post via Email Checks mail.example.com by Default
  199. Reference: https://wpvulndb.com/vulnerabilities/8719
  200. Reference: https://github.com/WordPress/WordPress/commit/061e8788814ac87706d8b95688df276fe3c8596a
  201. Reference: https://wordpress.org/news/2017/01/wordpress-4-7-1-security-and-maintenance-release/
  202. Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5491
  203. [i] Fixed in: 4.7.1
  204.  
  205. [!] Title: WordPress 2.8-4.7 - Accessibility Mode Cross-Site Request Forgery (CSRF)
  206. Reference: https://wpvulndb.com/vulnerabilities/8720
  207. Reference: https://github.com/WordPress/WordPress/commit/03e5c0314aeffe6b27f4b98fef842bf0fb00c733
  208. Reference: https://wordpress.org/news/2017/01/wordpress-4-7-1-security-and-maintenance-release/
  209. Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5492
  210. [i] Fixed in: 4.7.1
  211.  
  212. [!] Title: WordPress 3.0-4.7 - Cryptographically Weak Pseudo-Random Number Generator (PRNG)
  213. Reference: https://wpvulndb.com/vulnerabilities/8721
  214. Reference: https://github.com/WordPress/WordPress/commit/cea9e2dc62abf777e06b12ec4ad9d1aaa49b29f4
  215. Reference: https://wordpress.org/news/2017/01/wordpress-4-7-1-security-and-maintenance-release/
  216. Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5493
  217. [i] Fixed in: 4.7.1
  218.  
  219. [!] Title: WordPress 2.8.1-4.7.2 - Control Characters in Redirect URL Validation
  220. Reference: https://wpvulndb.com/vulnerabilities/8766
  221. Reference: https://wordpress.org/news/2017/03/wordpress-4-7-3-security-and-maintenance-release/
  222. Reference: https://github.com/WordPress/WordPress/commit/288cd469396cfe7055972b457eb589cea51ce40e
  223. Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6815
  224. [i] Fixed in: 4.7.3
  225.  
  226. [!] Title: WordPress 2.3-4.8.3 - Host Header Injection in Password Reset
  227. Reference: https://wpvulndb.com/vulnerabilities/8807
  228. Reference: https://exploitbox.io/vuln/WordPress-Exploit-4-7-Unauth-Password-Reset-0day-CVE-2017-8295.html
  229. Reference: http://blog.dewhurstsecurity.com/2017/05/04/exploitbox-wordpress-security-advisories.html
  230. Reference: https://core.trac.wordpress.org/ticket/25239
  231. Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8295
  232.  
  233. [!] Title: WordPress 2.7.0-4.7.4 - Insufficient Redirect Validation
  234. Reference: https://wpvulndb.com/vulnerabilities/8815
  235. Reference: https://github.com/WordPress/WordPress/commit/76d77e927bb4d0f87c7262a50e28d84e01fd2b11
  236. Reference: https://wordpress.org/news/2017/05/wordpress-4-7-5/
  237. Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9066
  238. [i] Fixed in: 4.7.5
  239.  
  240. [!] Title: WordPress 2.5.0-4.7.4 - Post Meta Data Values Improper Handling in XML-RPC
  241. Reference: https://wpvulndb.com/vulnerabilities/8816
  242. Reference: https://wordpress.org/news/2017/05/wordpress-4-7-5/
  243. Reference: https://github.com/WordPress/WordPress/commit/3d95e3ae816f4d7c638f40d3e936a4be19724381
  244. Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9062
  245. [i] Fixed in: 4.7.5
  246.  
  247. [!] Title: WordPress 3.4.0-4.7.4 - XML-RPC Post Meta Data Lack of Capability Checks
  248. Reference: https://wpvulndb.com/vulnerabilities/8817
  249. Reference: https://wordpress.org/news/2017/05/wordpress-4-7-5/
  250. Reference: https://github.com/WordPress/WordPress/commit/e88a48a066ab2200ce3091b131d43e2fab2460a4
  251. Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9065
  252. [i] Fixed in: 4.7.5
  253.  
  254. [!] Title: WordPress 2.5.0-4.7.4 - Filesystem Credentials Dialog CSRF
  255. Reference: https://wpvulndb.com/vulnerabilities/8818
  256. Reference: https://wordpress.org/news/2017/05/wordpress-4-7-5/
  257. Reference: https://github.com/WordPress/WordPress/commit/38347d7c580be4cdd8476e4bbc653d5c79ed9b67
  258. Reference: https://sumofpwn.nl/advisory/2016/cross_site_request_forgery_in_wordpress_connection_information.html
  259. Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9064
  260. [i] Fixed in: 4.7.5
  261.  
  262. [!] Title: WordPress 3.3-4.7.4 - Large File Upload Error XSS
  263. Reference: https://wpvulndb.com/vulnerabilities/8819
  264. Reference: https://wordpress.org/news/2017/05/wordpress-4-7-5/
  265. Reference: https://github.com/WordPress/WordPress/commit/8c7ea71edbbffca5d9766b7bea7c7f3722ffafa6
  266. Reference: https://hackerone.com/reports/203515
  267. Reference: https://hackerone.com/reports/203515
  268. Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9061
  269. [i] Fixed in: 4.7.5
  270.  
  271. [!] Title: WordPress 3.4.0-4.7.4 - Customizer XSS & CSRF
  272. Reference: https://wpvulndb.com/vulnerabilities/8820
  273. Reference: https://wordpress.org/news/2017/05/wordpress-4-7-5/
  274. Reference: https://github.com/WordPress/WordPress/commit/3d10fef22d788f29aed745b0f5ff6f6baea69af3
  275. Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9063
  276. [i] Fixed in: 4.7.5
  277.  
  278. [!] Title: WordPress 2.3.0-4.8.1 - $wpdb->prepare() potential SQL Injection
  279. Reference: https://wpvulndb.com/vulnerabilities/8905
  280. Reference: https://wordpress.org/news/2017/09/wordpress-4-8-2-security-and-maintenance-release/
  281. Reference: https://github.com/WordPress/WordPress commit/70b21279098fc973eae803693c0705a548128e48
  282. Reference: https://github.com/WordPress/WordPress/commit/fc930d3daed1c3acef010d04acc2c5de93cd18ec [191/536]
  283. [i] Fixed in: 4.8.2
  284.  
  285. [!] Title: WordPress 2.3.0-4.7.4 - Authenticated SQL injection
  286. Reference: https://wpvulndb.com/vulnerabilities/8906
  287. Reference: https://medium.com/websec/wordpress-sqli-bbb2afcc8e94
  288. Reference: https://wordpress.org/news/2017/09/wordpress-4-8-2-security-and-maintenance-release/
  289. Reference: https://github.com/WordPress/WordPress/commit/70b21279098fc973eae803693c0705a548128e48
  290. Reference: https://wpvulndb.com/vulnerabilities/8905
  291. [i] Fixed in: 4.7.5
  292.  
  293. [!] Title: WordPress 2.9.2-4.8.1 - Open Redirect
  294. Reference: https://wpvulndb.com/vulnerabilities/8910
  295. Reference: https://wordpress.org/news/2017/09/wordpress-4-8-2-security-and-maintenance-release/
  296. Reference: https://core.trac.wordpress.org/changeset/41398
  297. Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14725
  298. [i] Fixed in: 4.8.2
  299.  
  300. [!] Title: WordPress 3.0-4.8.1 - Path Traversal in Unzipping
  301. Reference: https://wpvulndb.com/vulnerabilities/8911
  302. Reference: https://wordpress.org/news/2017/09/wordpress-4-8-2-security-and-maintenance-release/
  303. Reference: https://core.trac.wordpress.org/changeset/41457
  304. Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14719
  305. [i] Fixed in: 4.8.2
  306.  
  307. [!] Title: WordPress <= 4.8.2 - $wpdb->prepare() Weakness
  308. Reference: https://wpvulndb.com/vulnerabilities/8941
  309. Reference: https://wordpress.org/news/2017/10/wordpress-4-8-3-security-release/
  310. Reference: https://github.com/WordPress/WordPress/commit/a2693fd8602e3263b5925b9d799ddd577202167d
  311. Reference: https://twitter.com/ircmaxell/status/923662170092638208
  312. Reference: https://blog.ircmaxell.com/2017/10/disclosure-wordpress-wpdb-sql-injection-technical.html
  313. Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16510
  314. [i] Fixed in: 4.8.3
  315.  
  316. [!] Title: WordPress 2.8.6-4.9 - Authenticated JavaScript File Upload
  317. Reference: https://wpvulndb.com/vulnerabilities/8966
  318. Reference: https://wordpress.org/news/2017/11/wordpress-4-9-1-security-and-maintenance-release/
  319. Reference: https://github.com/WordPress/WordPress/commit/67d03a98c2cae5f41843c897f206adde299b0509
  320. Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17092
  321. [i] Fixed in: 4.9.1
  322.  
  323. [!] Title: WordPress 1.5.0-4.9 - RSS and Atom Feed Escaping
  324. Reference: https://wpvulndb.com/vulnerabilities/8967
  325. Reference: https://wordpress.org/news/2017/11/wordpress-4-9-1-security-and-maintenance-release/
  326. Reference: https://github.com/WordPress/WordPress/commit/f1de7e42df29395c3314bf85bff3d1f4f90541de
  327. Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17094
  328. [i] Fixed in: 4.9.1
  329.  
  330. [!] Title: WordPress <= 4.9.4 - Application Denial of Service (DoS) (unpatched)
  331. Reference: https://wpvulndb.com/vulnerabilities/9021
  332. Reference: https://baraktawily.blogspot.fr/2018/02/how-to-dos-29-of-world-wide-websites.html
  333. Reference: https://github.com/quitten/doser.py
  334. Reference: https://thehackernews.com/2018/02/wordpress-dos-exploit.html
  335. Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6389
  336.  
  337. [!] Title: WordPress <= 4.9.6 - Authenticated Arbitrary File Deletion
  338. Reference: https://wpvulndb.com/vulnerabilities/9100
  339. Reference: https://blog.ripstech.com/2018/wordpress-file-delete-to-code-execution/
  340. Reference: http://blog.vulnspy.com/2018/06/27/Wordpress-4-9-6-Arbitrary-File-Delection-Vulnerbility-Exploit/
  341. Reference: https://github.com/WordPress/WordPress/commit/c9dce0606b0d7e6f494d4abe7b193ac046a322cd
  342. Reference: https://wordpress.org/news/2018/07/wordpress-4-9-7-security-and-maintenance-release/
  343. Reference: https://www.wordfence.com/blog/2018/07/details-of-an-additional-file-deletion-vulnerability-patched-in-wordpress-4-9-7/
  344. Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12895
  345. [+] WordPress theme in use: mrtailor - v2.6.9 [127/536]
  346.  
  347. [+] Name: mrtailor - v2.6.9
  348. | Location: https://www.pivert-store.com/wp-content/themes/mrtailor/
  349. | Style URL: https://www.pivert-store.com/wp-content/themes/mrtailor/style.css
  350. | Referenced style.css: https://www.pivert-store.com/wp-content/themes/mrtailor/inc/fonts/getbowtied-fonts/style.css
  351. | Theme Name: Mr. Tailor
  352. | Theme URI: http://www.getbowtied.com/
  353. | Description: Mr. Tailor is premium WordPress and WooCommerce theme that will help you tell your story and sell...
  354. | Author: Get Bowtied
  355. | Author URI: http://www.getbowtied.com/
  356.  
  357. [+] Enumerating plugins from passive detection ...
  358. | 19 plugins found:
  359.  
  360. [+] Name: boxzilla - v3.2.4
  361. | Last updated: 2018-06-27T08:37:00.000Z
  362. | Location: https://www.pivert-store.com/wp-content/plugins/boxzilla/
  363. | Readme: https://www.pivert-store.com/wp-content/plugins/boxzilla/readme.txt
  364. [!] The version is out of date, the latest version is 3.2.6
  365.  
  366. [+] Name: contact-form-7 - v5.0.2
  367. | Last updated: 2018-07-12T12:37:00.000Z
  368. | Location: https://www.pivert-store.com/wp-content/plugins/contact-form-7/
  369. | Readme: https://www.pivert-store.com/wp-content/plugins/contact-form-7/readme.txt
  370. [!] The version is out of date, the latest version is 5.0.3
  371.  
  372. [+] Name: duracelltomi-google-tag-manager - v1.8
  373. | Last updated: 2018-06-05T07:53:00.000Z
  374. | Location: https://www.pivert-store.com/wp-content/plugins/duracelltomi-google-tag-manager/
  375. | Readme: https://www.pivert-store.com/wp-content/plugins/duracelltomi-google-tag-manager/readme.txt
  376. [!] The version is out of date, the latest version is 1.8.1
  377.  
  378. [+] Name: js_composer
  379. | Location: https://www.pivert-store.com/wp-content/plugins/js_composer/
  380.  
  381. [!] We could not determine the version installed. All of the past known vulnerabilities will be output to allow you to do your own manual investigation.
  382.  
  383. [!] Title: Visual Composer <= 4.7.3 - Multiple Unspecified Cross-Site Scripting (XSS)
  384. Reference: https://wpvulndb.com/vulnerabilities/8208
  385. Reference: http://codecanyon.net/item/visual-composer-page-builder-for-wordpress/242431
  386. Reference: https://forums.envato.com/t/visual-composer-security-vulnerability-fix/10494/7
  387. [i] Fixed in: 4.7.4
  388.  
  389. [+] Name: mailchimp-for-woocommerce - v2.1.7
  390. | Last updated: 2018-07-12T15:40:00.000Z
  391. | Location: https://www.pivert-store.com/wp-content/plugins/mailchimp-for-woocommerce/
  392. | Readme: https://www.pivert-store.com/wp-content/plugins/mailchimp-for-woocommerce/README.txt
  393. [!] The version is out of date, the latest version is 2.1.9
  394.  
  395. [+] Name: mailchimp-for-wp - v4.2.2
  396. | Last updated: 2018-07-09T11:04:00.000Z
  397. | Location: https://www.pivert-store.com/wp-content/plugins/mailchimp-for-wp/
  398. | Readme: https://www.pivert-store.com/wp-content/plugins/mailchimp-for-wp/readme.txt
  399. | Changelog: https://www.pivert-store.com/wp-content/plugins/mailchimp-for-wp/CHANGELOG.md
  400. [!] The version is out of date, the latest version is 4.2.4
  401.  
  402. [+] Name: mailchimp-top-bar - v1.3.1
  403. | Latest version: 1.3.1 (up to date)
  404. | Last updated: 2018-05-29T08:14:00.000Z
  405. | Location: https://www.pivert-store.com/wp-content/plugins/mailchimp-top-bar/
  406. | Readme: https://www.pivert-store.com/wp-content/plugins/mailchimp-top-bar/readme.txt
  407. | Changelog: https://www.pivert-store.com/wp-content/plugins/mailchimp-top-bar/CHANGELOG.md
  408. [+] Name: paypal-for-woocommerce - v1.4.9 [63/536]
  409. | Last updated: 2018-07-17T05:39:00.000Z
  410. | Location: https://www.pivert-store.com/wp-content/plugins/paypal-for-woocommerce/
  411. | Readme: https://www.pivert-store.com/wp-content/plugins/paypal-for-woocommerce/readme.txt
  412. [!] The version is out of date, the latest version is 1.4.14
  413.  
  414. [+] Name: sitepress-multilingual-cms
  415. | Latest version: 2.0.4.1
  416. | Last updated: 2011-06-05T13:40:00.000Z
  417. | Location: https://www.pivert-store.com/wp-content/plugins/sitepress-multilingual-cms/
  418.  
  419. [!] We could not determine the version installed. All of the past known vulnerabilities will be output to allow you to do your own manual investigation.
  420.  
  421. [!] Title: sitepress-multilingual-cms - Full Path Disclosure
  422. Reference: https://wpvulndb.com/vulnerabilities/6104
  423. [i] Fixed in: 3.1.7.2
  424.  
  425. [!] Title: WPML <= 3.1.7.2 - Multiple Vulnerabilities (Including SQLi)
  426. Reference: https://wpvulndb.com/vulnerabilities/7843
  427. Reference: http://seclists.org/bugtraq/2015/Mar/60
  428. Reference: http://wpml.org/2015/03/wpml-security-update-bug-and-fix/
  429. Reference: http://packetstormsecurity.com/files/130810/
  430. Reference: http://klikki.fi/adv/wpml.html
  431. Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2314
  432. Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2791
  433. Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2792
  434. Reference: https://www.exploit-db.com/exploits/36414/
  435. [i] Fixed in: 3.1.9
  436.  
  437. [!] Title: WPML 2.9.3-3.2.6 - Cross-Site Scripting (XSS) in Accept-Language Header
  438. Reference: https://wpvulndb.com/vulnerabilities/8173
  439. Reference: http://blog.secupress.fr/en/xss-wpml-header-405.html
  440. [i] Fixed in: 3.2.7
  441.  
  442. [+] Name: sizeguide
  443. | Location: https://www.pivert-store.com/wp-content/plugins/sizeguide/
  444.  
  445. [+] Name: woocommerce - v3.4.1
  446. | Last updated: 2018-06-20T17:38:00.000Z
  447. | Location: https://www.pivert-store.com/wp-content/plugins/woocommerce/
  448. | Readme: https://www.pivert-store.com/wp-content/plugins/woocommerce/readme.txt
  449. [!] The version is out of date, the latest version is 3.4.3
  450.  
  451. [+] Name: woocommerce-currency-switcher - v1.2.4
  452. | Last updated: 2018-06-30T09:05:00.000Z
  453. | Location: https://www.pivert-store.com/wp-content/plugins/woocommerce-currency-switcher/
  454. | Readme: https://www.pivert-store.com/wp-content/plugins/woocommerce-currency-switcher/readme.txt
  455. [!] The version is out of date, the latest version is 1.2.5.1
  456.  
  457. [+] Name: woocommerce-extra-accounts-fields - v4.3
  458. | Latest version: 1.0.2 (up to date)
  459. | Last updated: 2018-02-12T22:25:00.000Z
  460. | Location: https://www.pivert-store.com/wp-content/plugins/woocommerce-extra-accounts-fields/
  461. | Readme: https://www.pivert-store.com/wp-content/plugins/woocommerce-extra-accounts-fields/README.txt
  462.  
  463. [+] Name: woocommerce-google-dynamic-retargeting-tag - v1.4.6
  464. | Last updated: 2018-07-04T07:54:00.000Z
  465. | Location: https://www.pivert-store.com/wp-content/plugins/woocommerce-google-dynamic-retargeting-tag/
  466. | Readme: https://www.pivert-store.com/wp-content/plugins/woocommerce-google-dynamic-retargeting-tag/readme.txt
  467. [!] The version is out of date, the latest version is 1.4.7
  468.  
  469. [+] Name: woocommerce-multilingual - v4.2.10
  470. | Last updated: 2018-07-02T06:22:00.000Z
  471. | Last updated: 2018-07-02T06:22:00.000Z [1/536]
  472. | Location: https://www.pivert-store.com/wp-content/plugins/woocommerce-multilingual/
  473. | Readme: https://www.pivert-store.com/wp-content/plugins/woocommerce-multilingual/readme.txt
  474. [!] The version is out of date, the latest version is 4.3.3
  475.  
  476. [+] Name: wp-google-map-plugin - v4.0.6
  477. | Latest version: 4.0.6 (up to date)
  478. | Last updated: 2018-05-30T09:57:00.000Z
  479. | Location: https://www.pivert-store.com/wp-content/plugins/wp-google-map-plugin/
  480. | Readme: https://www.pivert-store.com/wp-content/plugins/wp-google-map-plugin/readme.txt
  481.  
  482. [+] Name: wp-menu-cart-pro
  483. | Location: https://www.pivert-store.com/wp-content/plugins/wp-menu-cart-pro/
  484. | Changelog: https://www.pivert-store.com/wp-content/plugins/wp-menu-cart-pro/changelog.txt
  485.  
  486. [+] Name: wpml-cms-nav
  487. | Location: https://www.pivert-store.com/wp-content/plugins/wpml-cms-nav/
  488.  
  489. [+] Name: wordpress-seo - v7.5.3
  490. | Last updated: 2018-07-10T08:34:00.000Z
  491. | Location: https://www.pivert-store.com/wp-content/plugins/wordpress-seo/
  492. | Readme: https://www.pivert-store.com/wp-content/plugins/wordpress-seo/readme.txt
  493. [!] The version is out of date, the latest version is 7.8
  494.  
  495. [+] Enumerating usernames ...
  496. [+] We did not enumerate any usernames
  497.  
  498. [+] Finished: Fri Jul 20 18:03:32 2018
  499. [+] Elapsed time: 00:05:07
  500. [+] Requests made: 549
  501. [+] Memory used: 151.852 MB
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!