garfield/wpscan
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
745 Commits 17 Branches 73 Tags
7239c8d848ed55e4e56aa5a681eaadda147d009a
Commit Graph

239 Commits

Author SHA1 Message Date
Christian Mehlmauer
63f6bb7181 added vuln 2013-01-21 19:56:33 +01:00
Christian Mehlmauer
928ca9c0dd added vuln 2013-01-21 18:10:16 +01:00
Christian Mehlmauer
d95d72cf15 added vuln 2013-01-20 23:49:34 +01:00
Christian Mehlmauer
ebaf4378f2 added vuln 2013-01-20 23:23:45 +01:00
Christian Mehlmauer
e6b3d83ef5 added vuln 2013-01-20 22:39:30 +01:00
Christian Mehlmauer
11bd0df347 added vuln 2013-01-20 22:31:26 +01:00
Christian Mehlmauer
cbe439f0d7 New Plugin detection method 2013-01-19 19:38:25 +01:00
Christian Mehlmauer
8d232a8c39 Added w3-total-cache exploit and rspec tests for errors on loading the main script (issue #110) 2013-01-14 23:31:05 +01:00
Christian Mehlmauer
1377ee2653 added metasploit references 2013-01-13 21:08:07 +01:00
Christian Mehlmauer
22fb817fe3 typo 2013-01-12 18:22:27 +01:00
Charlie Eriksen
650550363d Fixing line ending 
This is getting annoying. But for some reason, my local line ending and
remote line ending were different. That's fixed now.
 2013-01-12 17:06:25 +00:00
Charlie Eriksen
3d0b236c80 Adding a bunch of vulns 
Add all the vulns. Or something.
 2013-01-12 17:02:43 +00:00
Christian Mehlmauer
b9b86e18da Seems to be a false positive: 
http://seclists.org/bugtraq/2013/Jan/50
Cannot reproduce it on my site too. Also the google dork in the advisory is for nextgen-gallery
 2013-01-11 21:40:01 +01:00
Christian Mehlmauer
9f53000e89 Gallery 3.8.3 Arbitrary File Read 2013-01-11 07:03:53 +01:00
ethicalhack3r
5133b6b579 Added XMLRPC issues to WP 3.5. See issue #99. 2013-01-10 11:02:12 +01:00
Ryan Dewhurst
8726cba0b9 Merge pull request #103 from FireFart/xml 
Xml
 2013-01-10 01:50:09 -08:00
Christian Mehlmauer
4062e4dfbc Renamed XML 2013-01-09 23:01:30 +01:00
Christian Mehlmauer
c63d879d56 Updated popular plugins 2013-01-09 22:59:12 +01:00
Christian Mehlmauer
a6ad818496 Support multiple references 2013-01-09 22:48:24 +01:00
Christian Mehlmauer
320e419518 Added new vulns (verified them with WP3.5 and the latest Plugin version) 2013-01-09 22:10:43 +01:00
erwanlr
cf102a04b1 Added google-document-embedder Arbitrary File Disclosure 2013-01-08 17:00:17 +01:00
erwanlr
95bab0546e Added extended-user-profile FPD 2013-01-08 16:51:21 +01:00
erwanlr
9254e809fc Added superslider-show FPD 2013-01-08 16:49:47 +01:00
erwanlr
140cc4882f Adedd multibox FPD 2013-01-08 16:48:24 +01:00
erwanlr
f23a5abf60 Added OpenInviter Information Disclosure <- hot one xD) 2013-01-07 18:21:46 +01:00
erwanlr
1956e3ff46 Fomatting, local vuln hashes added 2013-01-07 16:58:07 +01:00
erwanlr
980aa7198a Added html & htm extension in the local scanning 2013-01-07 14:39:37 +01:00
erwanlr
8894e42adf missing xml encoding & tag added 2013-01-07 14:29:40 +01:00
erwanlr
87d5d93030 Fix #98 wpstools options to locally scan a wp installation for vulnerable files 2013-01-07 14:24:21 +01:00
erwanlr
db7416c5a6 Added plugin wp-superb-slideshow FPD 2013-01-06 15:45:14 +01:00
erwanlr
2742500df5 Added RokBox multiple vulns 2013-01-06 15:42:50 +01:00
erwanlr
1ed133c4c8 Added theme onepagewebsite FPD 2013-01-06 15:37:08 +01:00
erwanlr
80ec2ec86e Added 4 premium themes FPD 2013-01-06 15:33:53 +01:00
erwanlr
192b5862b4 grou-random-image-widget FPD 2013-01-06 15:25:49 +01:00
erwanlr
6f406fe807 Sintic_gallery FPD & file upload 2013-01-06 15:23:21 +01:00
erwanlr
ba2a4fa0aa Theme vulns identation 2013-01-06 15:05:38 +01:00
erwanlr
f8ba2b71f8 Added Moneymasters FDP & File upload 2013-01-06 15:02:39 +01:00
erwanlr
2f76277a28 Added wp-useronline Persistent XSS & FPD 2013-01-04 16:35:51 +01:00
erwanlr
e2bb5dc24f Added Shopping cart multi (SQLi & file upload) 2013-01-03 16:35:07 +01:00
erwanlr
473a2446ae Added Reflex Gallery file upload 2013-01-03 16:33:08 +01:00
erwanlr
a91c45e548 Added uploader 1.0.4 file upload 2013-01-03 16:19:54 +01:00
erwanlr
716ff61ff9 Added xerte-online upload file 2013-01-03 15:50:57 +01:00
erwanlr
c850b231e0 Added advanced-custom-fields <= 3.5.1 RFI 2013-01-03 15:01:46 +01:00
erwanlr
b95110375e sitepress-multilingual-cms FPD added 2013-01-01 16:09:12 +01:00
Mark Stanislav
56e96dc97b Addition of an AUTHBYPASS type for plugins that will operate without a valid WordPress session and/or adequate privilege, creating a vulnerability due to its functionality. Also, added a portable-phpMyAdmin vulnerability to the plugin vulnerability listing utilizing the aforementioned new type. 2012-12-13 14:07:22 -05:00
ethicalhack3r
19bcc9263c Fixed typo 2012-12-12 20:34:09 +01:00
ethicalhack3r
194645eb5d Added asset-manager plugin vuln to db 2012-12-12 20:20:17 +01:00
erwanlr
962da638b9 Missing 's' 2012-12-11 20:31:13 +01:00
erwanlr
32506ca830 Scoring system removed from version finderprinting 2012-12-11 20:29:50 +01:00
erwanlr
b43a56fd38 WP 3.5 fingerprinting 2012-12-11 20:07:53 +01:00