garfield/wpscan
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
311 Commits 17 Branches 73 Tags
650550363df8778e4e3e47c3ec3cfd03d3eab12c
Commit Graph

79 Commits

Author SHA1 Message Date
Charlie Eriksen
650550363d Fixing line ending 
This is getting annoying. But for some reason, my local line ending and
remote line ending were different. That's fixed now.
 2013-01-12 17:06:25 +00:00
Charlie Eriksen
3d0b236c80 Adding a bunch of vulns 
Add all the vulns. Or something.
 2013-01-12 17:02:43 +00:00
Christian Mehlmauer
b9b86e18da Seems to be a false positive: 
http://seclists.org/bugtraq/2013/Jan/50
Cannot reproduce it on my site too. Also the google dork in the advisory is for nextgen-gallery
 2013-01-11 21:40:01 +01:00
Christian Mehlmauer
9f53000e89 Gallery 3.8.3 Arbitrary File Read 2013-01-11 07:03:53 +01:00
ethicalhack3r
5133b6b579 Added XMLRPC issues to WP 3.5. See issue #99. 2013-01-10 11:02:12 +01:00
Ryan Dewhurst
8726cba0b9 Merge pull request #103 from FireFart/xml 
Xml
 2013-01-10 01:50:09 -08:00
Christian Mehlmauer
4062e4dfbc Renamed XML 2013-01-09 23:01:30 +01:00
Christian Mehlmauer
c63d879d56 Updated popular plugins 2013-01-09 22:59:12 +01:00
Christian Mehlmauer
a6ad818496 Support multiple references 2013-01-09 22:48:24 +01:00
Christian Mehlmauer
320e419518 Added new vulns (verified them with WP3.5 and the latest Plugin version) 2013-01-09 22:10:43 +01:00
erwanlr
cf102a04b1 Added google-document-embedder Arbitrary File Disclosure 2013-01-08 17:00:17 +01:00
erwanlr
95bab0546e Added extended-user-profile FPD 2013-01-08 16:51:21 +01:00
erwanlr
9254e809fc Added superslider-show FPD 2013-01-08 16:49:47 +01:00
erwanlr
140cc4882f Adedd multibox FPD 2013-01-08 16:48:24 +01:00
erwanlr
f23a5abf60 Added OpenInviter Information Disclosure <- hot one xD) 2013-01-07 18:21:46 +01:00
erwanlr
1956e3ff46 Fomatting, local vuln hashes added 2013-01-07 16:58:07 +01:00
erwanlr
980aa7198a Added html & htm extension in the local scanning 2013-01-07 14:39:37 +01:00
erwanlr
8894e42adf missing xml encoding & tag added 2013-01-07 14:29:40 +01:00
erwanlr
87d5d93030 Fix #98 wpstools options to locally scan a wp installation for vulnerable files 2013-01-07 14:24:21 +01:00
erwanlr
db7416c5a6 Added plugin wp-superb-slideshow FPD 2013-01-06 15:45:14 +01:00
erwanlr
2742500df5 Added RokBox multiple vulns 2013-01-06 15:42:50 +01:00
erwanlr
1ed133c4c8 Added theme onepagewebsite FPD 2013-01-06 15:37:08 +01:00
erwanlr
80ec2ec86e Added 4 premium themes FPD 2013-01-06 15:33:53 +01:00
erwanlr
192b5862b4 grou-random-image-widget FPD 2013-01-06 15:25:49 +01:00
erwanlr
6f406fe807 Sintic_gallery FPD & file upload 2013-01-06 15:23:21 +01:00
erwanlr
ba2a4fa0aa Theme vulns identation 2013-01-06 15:05:38 +01:00
erwanlr
f8ba2b71f8 Added Moneymasters FDP & File upload 2013-01-06 15:02:39 +01:00
erwanlr
2f76277a28 Added wp-useronline Persistent XSS & FPD 2013-01-04 16:35:51 +01:00
erwanlr
e2bb5dc24f Added Shopping cart multi (SQLi & file upload) 2013-01-03 16:35:07 +01:00
erwanlr
473a2446ae Added Reflex Gallery file upload 2013-01-03 16:33:08 +01:00
erwanlr
a91c45e548 Added uploader 1.0.4 file upload 2013-01-03 16:19:54 +01:00
erwanlr
716ff61ff9 Added xerte-online upload file 2013-01-03 15:50:57 +01:00
erwanlr
c850b231e0 Added advanced-custom-fields <= 3.5.1 RFI 2013-01-03 15:01:46 +01:00
erwanlr
b95110375e sitepress-multilingual-cms FPD added 2013-01-01 16:09:12 +01:00
Mark Stanislav
56e96dc97b Addition of an AUTHBYPASS type for plugins that will operate without a valid WordPress session and/or adequate privilege, creating a vulnerability due to its functionality. Also, added a portable-phpMyAdmin vulnerability to the plugin vulnerability listing utilizing the aforementioned new type. 2012-12-13 14:07:22 -05:00
ethicalhack3r
19bcc9263c Fixed typo 2012-12-12 20:34:09 +01:00
ethicalhack3r
194645eb5d Added asset-manager plugin vuln to db 2012-12-12 20:20:17 +01:00
erwanlr
962da638b9 Missing 's' 2012-12-11 20:31:13 +01:00
erwanlr
32506ca830 Scoring system removed from version finderprinting 2012-12-11 20:29:50 +01:00
erwanlr
b43a56fd38 WP 3.5 fingerprinting 2012-12-11 20:07:53 +01:00
erwanlr
1663cdb301 Ref #33 Options to find dead reference urls --cvru | check-vuln-ref-urls 2012-12-07 17:16:21 +01:00
Christian Mehlmauer
4c9048ceec updated theme and plugin lists 2012-11-24 19:46:02 +01:00
Gianluca Brindisi
dda043d7f7 Added http://brindi.si/g/blog/vulnerable-swf-bundled-in-wordpress-plugins.html 2012-11-22 11:31:14 +01:00
Erwan
4b2acde84a Fix #64 (closing <vulnerability> tag) 2012-11-13 14:21:30 +01:00
ethicalhack3r
04c1d32cd9 Added http://seclists.org/fulldisclosure/2012/Nov/51 to wp_vulns.xml 2012-11-10 00:03:47 +01:00
Gianluca Brindisi
ed9dc03ddb Added http://seclists.org/bugtraq/2012/Nov/33 2012-11-07 17:50:36 +01:00
Gianluca Brindisi
9b8b573f83 Added http://www.securityfocus.com/archive/1/524625/30/0/threaded 2012-11-05 17:04:51 +01:00
Gianluca Brindisi
dcc2320ad6 http://packetstormsecurity.org/files/117820/wpcatalog-xss.txt 2012-11-03 18:19:57 +01:00
Gianluca Brindisi
783d95c56d Fixed slug in Wordfence XSS vulnerability 2012-11-03 18:18:41 +01:00
Gianluca Brindisi
9785c815c0 Added http://packetstormsecurity.org/files/117768 2012-10-31 10:24:25 +01:00