garfield/wpscan
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
1,056 Commits 17 Branches 73 Tags
6ecd5383640d49cba9c3048f195ddacce8dbcf85
Commit Graph

376 Commits

Author SHA1 Message Date
erwanlr
f58794f797 Most popular themes list generation set to 20 pages 
150 was more than the max existing pages (there are 140 pages in the
wordpress.org theme list)
 2013-11-08 11:28:13 +00:00
erwanlr
02a013bdfa Trying a fix for Kali Linux 2013-11-07 15:20:19 +00:00
Peter van der Laan
843f783a7a Update output.rb 2013-11-06 20:12:25 +01:00
Peter van der Laan
5e6efb4cb7 Update output.rb 2013-11-06 15:05:37 +01:00
erwanlr
916ce80869 Merge pull request #347 from pvdl/vulns 
Update WordPress Vulnerabilities
 2013-10-31 04:26:16 -07:00
Peter van der Laan
ac9647d2b2 Output the vulnerability fix if available 
It just shows if there is a vulnerability fix.
It doesn't check if the fix matches with the current plugin version.
So you should check manually if you need to upgrade or not.
 2013-10-29 13:42:40 +01:00
ethicalhack3r
a7d9927584 Added hosted wordpress detection. See issue #343. 2013-10-28 00:18:09 +01:00
erwanlr
a64a1d6a7c Merge pull request #333 from pvdl/master 
Update plugin_vulns.xml
 2013-10-23 04:55:58 -07:00
Peter van der Laan
10cb883904 Update output.rb 2013-10-23 13:37:00 +02:00
FireFart
706774bf61 Add detection for all-in-one-seo-pack 
Closes issue #332
 2013-10-22 22:39:23 +02:00
Peter van der Laan
f5204a7efa Added 'WordPress Version Vulnerability' statistics 2013-10-17 21:43:42 +02:00
erwanlr
70dc987d45 Missing word 2013-10-05 20:08:10 +01:00
erwanlr
474816762f Use less memory when brute forcing with a large wordlist 2013-10-05 20:03:34 +01:00
erwanlr
90ade58842 Memory Usage output 2013-10-05 13:06:56 +01:00
erwanlr
f4460f315e Fix #249 & #275 2013-10-02 15:36:02 +01:00
sullo
870201de14 Don't skip passwords that start with a hash. This is fairly common (see RockYou list for example). 2013-09-12 09:30:23 -04:00
Christian Mehlmauer
5cc9df9599 urls 2013-08-25 09:38:25 +02:00
Christian Mehlmauer
a032b7c134 more reference tags, fixes issue #268 2013-08-24 11:16:39 +02:00
Christian Mehlmauer
fc75b315f9 bugfix 2013-08-23 14:02:58 +02:00
Christian Mehlmauer
1f5cb4b0a0 added cve tag to xml file 2013-08-23 14:02:09 +02:00
ethicalhack3r
25915b0cbb Refactored version method to use ternary operator. 2013-08-23 12:57:37 +02:00
Christian Mehlmauer
03f8b02ac1 add --version switch 2013-08-18 15:40:55 +02:00
Christian Mehlmauer
7acea5f4b2 fix issue #266 - passive detection regex 2013-08-17 11:33:25 +02:00
Christian Mehlmauer
9015834b15 fix issue #265 - remove base64 images before passive detection 2013-08-17 10:54:56 +02:00
Christian Mehlmauer
d107613e40 fix issue #262 2013-08-12 22:01:24 +02:00
Christian Mehlmauer
6cedd672cb removed comment 2013-08-10 13:31:20 +02:00
Christian Mehlmauer
3583db6a92 banner artwork 2013-08-10 13:30:24 +02:00
Christian Mehlmauer
5ea911c9b3 Header names are case insensitive 
Move header checks to web_site
 2013-08-10 11:49:30 +02:00
Christian Mehlmauer
6c008015e9 parse robots.txt 2013-08-10 11:35:17 +02:00
Christian Mehlmauer
6c8e76060a - update headers 
- show twitter usernames
 2013-08-09 23:41:34 +02:00
ethicalhack3r
3870fc0b2c Typo fix. Also Travis-CI test... 2013-08-09 13:04:50 +02:00
ethicalhack3r
2a9bd99f97 Fix for xmlrpc false positive. Issue #260. 2013-08-09 12:54:10 +02:00
ethicalhack3r
697b72836d Missunderstood known_headers array, removed security headers 2013-07-25 20:01:55 +02:00
ethicalhack3r
b6777fd0d7 Added security headers 2013-07-25 19:56:06 +02:00
erwanlr
ab1381e830 WpItems::Detectable#passive_detection Complexity Reduced 2013-07-24 14:35:15 +02:00
erwanlr
669e1458da Fix #208 - Fixed vulnerable plugins still appear in the results 2013-07-24 14:18:02 +02:00
Christian Mehlmauer
0f7bc49992 wordpress.org is really unstable at the moment 2013-07-23 18:16:48 +02:00
Christian Mehlmauer
2fb6f7169a fix issue #245 2013-07-23 12:20:26 +02:00
Christian Mehlmauer
fc2ba604ea Added pingback header 2013-07-20 22:39:01 +02:00
Christian Mehlmauer
fd1e0da4df - Wordpress.com is instable 
- request_timeout and connect_timeout implemented
 2013-07-19 22:53:50 +02:00
Christian Mehlmauer
57755417f9 bugfix on output 2013-07-19 21:59:52 +02:00
Christian Mehlmauer
bb35837ea1 output interesting http-headers 2013-07-19 14:14:13 +02:00
erwanlr
0f8f49f19c Fix #241 2013-07-16 17:49:25 +02:00
erwanlr
c81a87d154 Update common_helper.rb 2013-06-26 01:18:16 +03:00
erwanlr
bc435a6266 Only load bundler for non Kali system 2013-06-26 01:16:51 +03:00
erwanlr
d3362bac75 Kali Linux detection 2013-06-26 01:15:51 +03:00
ethicalhack3r
6aa62ce20c Typo in usage info. See Issue #233 2013-06-25 16:46:31 +02:00
Christian Mehlmauer
a8c5b68d1a Fix Issue #232 2013-06-22 21:17:05 +02:00
Christian Mehlmauer
698f998307 Fix Issue #231 2013-06-22 21:16:00 +02:00
erwanlr
78a24630ac Releasing the Typhoeus version constraint 2013-06-14 16:36:06 +02:00