API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Jan 16th, 2019
227
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 10.41 KB | None | 0 0
raw download clone embed print report
  1. [+] URL: http://www.cootel.com.ni/
  2. [+] Started: Wed Jan 16 07:10:11 2019
  3.  
  4. Interesting Finding(s):
  5.  
  6. [+] http://www.cootel.com.ni/
  7. | Interesting Entries:
  8. | - Server: Apache/2.2.15 (CentOS)
  9. | - X-Powered-By: PHP/5.3.3
  10. | Found By: Headers (Passive Detection)
  11. | Confidence: 100%
  12.  
  13. [+] http://www.cootel.com.ni/cootel/xmlrpc.php
  14. | Found By: Link Tag (Passive Detection)
  15. | Confidence: 100%
  16. | Confirmed By: Direct Access (Aggressive Detection), 100% confidence
  17. | References:
  18. | - http://codex.wordpress.org/XML-RPC_Pingback_API
  19. | - https://www.rapid7.com/db/modules/auxiliary/scanner/http/wordpress_ghost_scanner
  20. | - https://www.rapid7.com/db/modules/auxiliary/dos/http/wordpress_xmlrpc_dos
  21. | - https://www.rapid7.com/db/modules/auxiliary/scanner/http/wordpress_xmlrpc_login
  22. | - https://www.rapid7.com/db/modules/auxiliary/scanner/http/wordpress_pingback_access
  23.  
  24. [+] http://www.cootel.com.ni/cootel/readme.html
  25. | Found By: Direct Access (Aggressive Detection)
  26. | Confidence: 100%
  27.  
  28. [+] Upload directory has listing enabled: http://www.cootel.com.ni/cootel/cootel/wp-content/uploads/
  29. | Found By: Direct Access (Aggressive Detection)
  30. | Confidence: 100%
  31.  
  32. [+] WordPress version 4.7.12 identified.
  33. | Detected By: Rss Generator (Passive Detection)
  34. | - http://www.cootel.com.ni/feed/, <generator>https://wordpress.org/?v=4.7.12</generator>
  35. | - http://www.cootel.com.ni/comments/feed/, <generator>https://wordpress.org/?v=4.7.12</generator>
  36.  
  37. [+] WordPress theme in use: dt-the7
  38. | Location: http://www.cootel.com.ni/cootel/wp-content/themes/dt-the7/
  39. | Style URL: http://www.cootel.com.ni/cootel/wp-content/themes/dt-the7/style.css?ver=3.1.3
  40. | Style Name: The7
  41. | Style URI: http://dream-theme.com/the7/
  42. | Description: Put simply, The7 is the world's most advanced WordPress theme. It features 630+ design customization...
  43. | Author: Dream-Theme
  44. | Author URI: http://dream-theme.com/
  45. |
  46. | Detected By: Css Style (Passive Detection)
  47. |
  48. | Version: 3.1.3 (80% confidence)
  49. | Detected By: Style (Passive Detection)
  50. | - http://www.cootel.com.ni/cootel/wp-content/themes/dt-the7/style.css?ver=3.1.3, Match: 'Version: 3.1.3'
  51.  
  52. [+] Enumerating All Plugins
  53. [+] Checking Plugin Versions
  54.  
  55. [i] Plugin(s) Identified:
  56.  
  57. [+] contact-form-7
  58. | Location: http://www.cootel.com.ni/cootel/wp-content/plugins/contact-form-7/
  59. | Last Updated: 2018-12-18T18:05:00.000Z
  60. | [!] The version is out of date, the latest version is 5.1.1
  61. |
  62. | Detected By: Urls In Homepage (Passive Detection)
  63. |
  64. | [!] 1 vulnerability identified:
  65. |
  66. | [!] Title: Contact Form 7 <= 5.0.3 - register_post_type() Privilege Escalation
  67. | Fixed in: 5.0.4
  68. | References:
  69. | - https://wpvulndb.com/vulnerabilities/9127
  70. | - https://contactform7.com/2018/09/04/contact-form-7-504/
  71. | - https://plugins.trac.wordpress.org/changeset/1935726/contact-form-7
  72. | - https://plugins.trac.wordpress.org/changeset/1934594/contact-form-7
  73. | - https://plugins.trac.wordpress.org/changeset/1934343/contact-form-7
  74. | - https://plugins.trac.wordpress.org/changeset/1934327/contact-form-7
  75. | - https://www.ripstech.com/php-security-calendar-2018/#day-18
  76. |
  77. | Version: 4.8 (100% confidence)
  78. | Detected By: Query Parameter (Passive Detection)
  79. | - http://www.cootel.com.ni/cootel/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=4.8
  80. | - http://www.cootel.com.ni/cootel/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=4.8
  81. | Confirmed By:
  82. | Readme - Stable Tag (Aggressive Detection)
  83. | - http://www.cootel.com.ni/cootel/wp-content/plugins/contact-form-7/readme.txt
  84. | Readme - ChangeLog Section (Aggressive Detection)
  85. | - http://www.cootel.com.ni/cootel/wp-content/plugins/contact-form-7/readme.txt
  86.  
  87. [+] google-analytics-for-wordpress
  88. | Location: http://www.cootel.com.ni/cootel/wp-content/plugins/google-analytics-for-wordpress/
  89. | Last Updated: 2018-12-31T18:08:00.000Z
  90. | [!] The version is out of date, the latest version is 7.3.3
  91. |
  92. | Detected By: Urls In Homepage (Passive Detection)
  93. | Confirmed By: Monster Insights Comment (Passive Detection)
  94. |
  95. | [!] 1 vulnerability identified:
  96. |
  97. | [!] Title: Google Analytics by Monster Insights <= 7.1.0 - Authenticated Stored Cross-Site Scripting (XSS)
  98. | Fixed in: 7.2.0
  99. | References:
  100. | - https://wpvulndb.com/vulnerabilities/9157
  101. | - https://www.ripstech.com/php-security-calendar-2018/
  102. |
  103. | Version: 6.2.0 (100% confidence)
  104. | Detected By: Monster Insights Comment (Passive Detection)
  105. | - http://www.cootel.com.ni/, Match: 'Google Analytics by MonsterInsights plugin v6.2.0 -'
  106. | Confirmed By:
  107. | Query Parameter (Passive Detection)
  108. | - http://www.cootel.com.ni/cootel/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend.min.js?ver=6.2.0
  109. | Readme - Stable Tag (Aggressive Detection)
  110. | - http://www.cootel.com.ni/cootel/wp-content/plugins/google-analytics-for-wordpress/readme.txt
  111.  
  112. [+] js_composer
  113. | Location: http://www.cootel.com.ni/cootel/wp-content/plugins/js_composer/
  114. |
  115. | Detected By: Urls In Homepage (Passive Detection)
  116. | Confirmed By:
  117. | Meta Generator (Passive Detection)
  118. | Body Tag (Passive Detection)
  119. |
  120. | Version: 4.11.2 (80% confidence)
  121. | Detected By: Query Parameter (Passive Detection)
  122. | - http://www.cootel.com.ni/cootel/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=4.11.2
  123. | - http://www.cootel.com.ni/cootel/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=4.11.2
  124. | Confirmed By: Body Tag (Passive Detection)
  125. | - http://www.cootel.com.ni/, Match: 'js-comp-ver-4.11.2'
  126.  
  127. [+] LayerSlider
  128. | Location: http://www.cootel.com.ni/cootel/wp-content/plugins/LayerSlider/
  129. |
  130. | Detected By: Urls In Homepage (Passive Detection)
  131. |
  132. | [!] 1 vulnerability identified:
  133. |
  134. | [!] Title: LayerSlider <= 6.2.0 - CSRF / Authenticated Stored XSS & SQL Injection
  135. | Fixed in: 6.2.1
  136. | References:
  137. | - https://wpvulndb.com/vulnerabilities/8822
  138. | - http://wphutte.com/layer-slider-6-1-6-csrf-to-xss-to-sqli-with-poc/
  139. | - https://support.kreaturamedia.com/docs/layersliderwp/documentation.html#release-log
  140. |
  141. | Version: 5.6.2 (50% confidence)
  142. | Detected By: Locale Translation File (Aggressive Detection)
  143. | - http://www.cootel.com.ni/cootel/wp-content/plugins/LayerSlider/locales/LayerSlider-en_US.po, Match: 'Project-Id-Version: LayerSlider WP 5.6.2'
  144.  
  145. [+] osm
  146. | Location: http://www.cootel.com.ni/cootel/wp-content/plugins/osm/
  147. | Last Updated: 2018-09-29T11:55:00.000Z
  148. | [!] The version is out of date, the latest version is 4.1.2
  149. |
  150. | Detected By: Comment (Passive Detection)
  151. |
  152. | Version: 3.9.4 (100% confidence)
  153. | Detected By: Comment (Passive Detection)
  154. | - http://www.cootel.com.ni/, Match: 'OSM plugin V3.9.4'
  155. | Confirmed By: Readme - Stable Tag (Aggressive Detection)
  156. | - http://www.cootel.com.ni/cootel/wp-content/plugins/osm/readme.txt
  157.  
  158. [+] revslider
  159. | Location: http://www.cootel.com.ni/cootel/wp-content/plugins/revslider/
  160. |
  161. | Detected By: Urls In Homepage (Passive Detection)
  162. | Confirmed By: Meta Generator (Passive Detection)
  163. |
  164. | Version: 5.1.4 (100% confidence)
  165. | Detected By: Meta Generator (Passive Detection)
  166. | - http://www.cootel.com.ni/, Match: 'Powered by Slider Revolution 5.1.4'
  167. | Confirmed By:
  168. | Query Parameter (Passive Detection)
  169. | - http://www.cootel.com.ni/cootel/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.1.4
  170. | - http://www.cootel.com.ni/cootel/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.1.4
  171. | - http://www.cootel.com.ni/cootel/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.1.4
  172. | Release Log (Aggressive Detection)
  173. | - http://www.cootel.com.ni/cootel/wp-content/plugins/revslider/release_log.html, Match: 'Version 5.1.4 StarPath (28th November 2015)'
  174.  
  175. [+] Ultimate_VC_Addons
  176. | Location: http://www.cootel.com.ni/cootel/wp-content/plugins/Ultimate_VC_Addons/
  177. |
  178. | Detected By: Urls In Homepage (Passive Detection)
  179. |
  180. | [!] 1 vulnerability identified:
  181. |
  182. | [!] Title: Ultimate Addons for Visual Composer <= 3.16.11 - Authenticated XSS, CSRF, RCE
  183. | Fixed in: 3.16.12
  184. | References:
  185. | - https://wpvulndb.com/vulnerabilities/8821
  186. | - http://wphutte.com/ultimate-addons-for-visual-composer-v3-16-10-xss-csrf-rce/
  187. | - https://codecanyon.net/item/ultimate-addons-for-visual-composer/6892199
  188. |
  189. | The version could not be determined.
  190.  
  191. [+] wp-store-locator
  192. | Location: http://www.cootel.com.ni/cootel/wp-content/plugins/wp-store-locator/
  193. | Last Updated: 2018-12-26T08:52:00.000Z
  194. | [!] The version is out of date, the latest version is 2.2.20
  195. |
  196. | Detected By: Urls In Homepage (Passive Detection)
  197. |
  198. | Version: 2.2.8 (100% confidence)
  199. | Detected By: Query Parameter (Passive Detection)
  200. | - http://www.cootel.com.ni/cootel/wp-content/plugins/wp-store-locator/css/styles.min.css?ver=2.2.8
  201. | Confirmed By:
  202. | Readme - Stable Tag (Aggressive Detection)
  203. | - http://www.cootel.com.ni/cootel/wp-content/plugins/wp-store-locator/readme.txt
  204. | Translation File (Aggressive Detection)
  205. | - http://www.cootel.com.ni/cootel/wp-content/plugins/wp-store-locator/languages/wpsl.pot, Match: '"Project-Id-Version: WP Store Locator v2.2.8'
  206.  
  207. [+] wp2yt-uploader
  208. | Location: http://www.cootel.com.ni/cootel/wp-content/plugins/wp2yt-uploader/
  209. | Latest Version: 2.0.4.5 (up to date)
  210. | Last Updated: 2015-10-20T13:59:00.000Z
  211. |
  212. | Detected By: Urls In Homepage (Passive Detection)
  213. |
  214. | Version: 2.0.4.5 (80% confidence)
  215. | Detected By: Readme - Stable Tag (Aggressive Detection)
  216. | - http://www.cootel.com.ni/cootel/wp-content/plugins/wp2yt-uploader/readme.txt
  217.  
  218. [+] Enumerating Config Backups
  219. Checking Config Backups - Time: 00:00:24 <===> (21 / 21) 100.00% Time: 00:00:24
  220.  
  221. ///////////////////////////////////////////////////////////
  222. [i] User(s) Identified:
  223.  
  224. [+] mapa
  225. | Detected By: Author Id Brute Forcing - Author Pattern (Aggressive Detection)
  226.  
  227. [+] agente-cootel
  228. | Detected By: Author Id Brute Forcing - Author Pattern (Aggressive Detection)
  229.  
  230. [+] cootel
  231. | Detected By: Author Id Brute Forcing - Author Pattern (Aggressive Detection)
  232.  
  233. [+] leonort
  234. | Detected By: Author Id Brute Forcing - Author Pattern (Aggressive Detection)
  235. //////////////////////////////////////////////////////////////
  236. [+] Finished: Wed Jan 16 07:14:43 2019
  237. [+] Requests Done: 17
  238. [+] Memory used: 15.312 MB
  239. [+] Elapsed time: 00:00:25
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!