garfield/wpscan
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
494 Commits 17 Branches 73 Tags
19d7c3122d950be015a77e7250b5de57c43902e8
Commit Graph

494 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Christian Mehlmauer
5f0b96f3e9 Docs 2013-01-09 23:05:48 +01:00
Christian Mehlmauer
4062e4dfbc Renamed XML 2013-01-09 23:01:30 +01:00
Christian Mehlmauer
c63d879d56 Updated popular plugins 2013-01-09 22:59:12 +01:00
Christian Mehlmauer
a6ad818496 Support multiple references 2013-01-09 22:48:24 +01:00
Christian Mehlmauer
320e419518 Added new vulns (verified them with WP3.5 and the latest Plugin version) 2013-01-09 22:10:43 +01:00
erwanlr
525491af89 spec/fixtures renamed to spec/samples 2013-01-09 12:42:22 +01:00
erwanlr
cf102a04b1 Added google-document-embedder Arbitrary File Disclosure 2013-01-08 17:00:17 +01:00
erwanlr
95bab0546e Added extended-user-profile FPD 2013-01-08 16:51:21 +01:00
erwanlr
9254e809fc Added superslider-show FPD 2013-01-08 16:49:47 +01:00
erwanlr
140cc4882f Adedd multibox FPD 2013-01-08 16:48:24 +01:00
erwanlr
f23a5abf60 Added OpenInviter Information Disclosure <- hot one xD) 2013-01-07 18:21:46 +01:00
erwanlr
1956e3ff46 Fomatting, local vuln hashes added 2013-01-07 16:58:07 +01:00
erwanlr
980aa7198a Added html & htm extension in the local scanning 2013-01-07 14:39:37 +01:00
erwanlr
8894e42adf missing xml encoding & tag added 2013-01-07 14:29:40 +01:00
erwanlr
87d5d93030 Fix #98 wpstools options to locally scan a wp installation for vulnerable files 2013-01-07 14:24:21 +01:00
erwanlr
db7416c5a6 Added plugin wp-superb-slideshow FPD 2013-01-06 15:45:14 +01:00
erwanlr
2742500df5 Added RokBox multiple vulns 2013-01-06 15:42:50 +01:00
erwanlr
1ed133c4c8 Added theme onepagewebsite FPD 2013-01-06 15:37:08 +01:00
erwanlr
80ec2ec86e Added 4 premium themes FPD 2013-01-06 15:33:53 +01:00
erwanlr
192b5862b4 grou-random-image-widget FPD 2013-01-06 15:25:49 +01:00
erwanlr
6f406fe807 Sintic_gallery FPD & file upload 2013-01-06 15:23:21 +01:00
erwanlr
ba2a4fa0aa Theme vulns identation 2013-01-06 15:05:38 +01:00
erwanlr
f8ba2b71f8 Added Moneymasters FDP & File upload 2013-01-06 15:02:39 +01:00
erwanlr
2f76277a28 Added wp-useronline Persistent XSS & FPD 2013-01-04 16:35:51 +01:00
erwanlr
0c555a70c0 Useless comment removed 2013-01-04 16:16:15 +01:00
erwanlr
42c68fe683 show_progression used in brute forcing 2013-01-04 15:30:35 +01:00
erwanlr
c0eadd22db show_progress_bar renamed to show_progression 2013-01-04 15:15:14 +01:00
erwanlr
e2bb5dc24f Added Shopping cart multi (SQLi & file upload) 2013-01-03 16:35:07 +01:00
erwanlr
473a2446ae Added Reflex Gallery file upload 2013-01-03 16:33:08 +01:00
erwanlr
a91c45e548 Added uploader 1.0.4 file upload 2013-01-03 16:19:54 +01:00
erwanlr
716ff61ff9 Added xerte-online upload file 2013-01-03 15:50:57 +01:00
erwanlr
c850b231e0 Added advanced-custom-fields <= 3.5.1 RFI 2013-01-03 15:01:46 +01:00
erwanlr
b95110375e sitepress-multilingual-cms FPD added 2013-01-01 16:09:12 +01:00
erwanlr
6ebf8dc32f Fix #97 Added ruby-dev to package installation 2013-01-01 15:35:20 +01:00
erwanlr
a4ace91e68 Fix #96 Username detection from header location when a trailing slash is present 2013-01-01 15:30:01 +01:00
erwanlr
9b14a8d038 Fix #54 False positive when a plugin directory redirects to the homepage 2012-12-21 12:21:40 +01:00
erwanlr
c0a05a4119 Ref #52 RSS url detection 2012-12-20 17:46:06 +01:00
erwanlr
221068ef1b Indentation 2012-12-20 17:02:43 +01:00
erwanlr
6df6cdc997 Typo & indentation 2012-12-20 16:57:17 +01:00
erwanlr
42ee4b9183 Ref #54 Implementation of WebSite.homepage_hash 2012-12-20 16:53:13 +01:00
erwanlr
b5390be6b5 WpTarget.error_404_hash moved to WebSite module 2012-12-20 16:22:04 +01:00
erwanlr
38c81384e8 WebSite module reworked 2012-12-19 17:53:11 +01:00
erwanlr
052721a8a2 @thesp0nge added to contributors (basic authentification) 2012-12-19 16:40:39 +01:00
erwanlr
9d74a289f8 Group development & test created in Gemfile, README updated to reflect it 2012-12-19 16:33:11 +01:00
Ryan Dewhurst
36b10250d1 Merge pull request #89 from mstanislav/master 
Addition of AUTHBYPASS type and new vulnerability
 2012-12-13 11:15:22 -08:00
Mark Stanislav
56e96dc97b Addition of an AUTHBYPASS type for plugins that will operate without a valid WordPress session and/or adequate privilege, creating a vulnerability due to its functionality. Also, added a portable-phpMyAdmin vulnerability to the plugin vulnerability listing utilizing the aforementioned new type. 2012-12-13 14:07:22 -05:00
erwanlr
d77a312844 Merge pull request #88 from FireFart/xmlrpc 
Detect XML Pingback URL
 2012-12-13 08:17:59 -08:00
Christian Mehlmauer
5415af538a docs 2012-12-13 16:47:05 +01:00
Christian Mehlmauer
509a400add Bugfixes and rspecs 2012-12-13 16:46:52 +01:00
erwanlr
56573b8a28 Merge branch 'master' of github.com:wpscanteam/wpscan 2012-12-13 13:48:18 +01:00