wpscan

Author	SHA1	Message	Date
Christian Mehlmauer	e5ef6436b9	formatting	2013-01-21 22:19:30 +01:00
Christian Mehlmauer	10616b18fc	more XSD checking	2013-01-21 22:18:12 +01:00
Christian Mehlmauer	c2cdf97bee	added XSD checking for XML files	2013-01-21 22:00:09 +01:00
Christian Mehlmauer	63f6bb7181	added vuln	2013-01-21 19:56:33 +01:00
Christian Mehlmauer	928ca9c0dd	added vuln	2013-01-21 18:10:16 +01:00
Christian Mehlmauer	d95d72cf15	added vuln	2013-01-20 23:49:34 +01:00
Christian Mehlmauer	ebaf4378f2	added vuln	2013-01-20 23:23:45 +01:00
Christian Mehlmauer	e6b3d83ef5	added vuln	2013-01-20 22:39:30 +01:00
Christian Mehlmauer	11bd0df347	added vuln	2013-01-20 22:31:26 +01:00
Christian Mehlmauer	cbe439f0d7	New Plugin detection method	2013-01-19 19:38:25 +01:00
Christian Mehlmauer	8d232a8c39	Added w3-total-cache exploit and rspec tests for errors on loading the main script (issue #110 )	2013-01-14 23:31:05 +01:00
Christian Mehlmauer	1377ee2653	added metasploit references	2013-01-13 21:08:07 +01:00
Christian Mehlmauer	22fb817fe3	typo	2013-01-12 18:22:27 +01:00
Charlie Eriksen	650550363d	Fixing line ending This is getting annoying. But for some reason, my local line ending and remote line ending were different. That's fixed now.	2013-01-12 17:06:25 +00:00
Charlie Eriksen	3d0b236c80	Adding a bunch of vulns Add all the vulns. Or something.	2013-01-12 17:02:43 +00:00
Christian Mehlmauer	b9b86e18da	Seems to be a false positive: http://seclists.org/bugtraq/2013/Jan/50 Cannot reproduce it on my site too. Also the google dork in the advisory is for nextgen-gallery	2013-01-11 21:40:01 +01:00
Christian Mehlmauer	9f53000e89	Gallery 3.8.3 Arbitrary File Read	2013-01-11 07:03:53 +01:00
ethicalhack3r	5133b6b579	Added XMLRPC issues to WP 3.5. See issue #99 .	2013-01-10 11:02:12 +01:00
Ryan Dewhurst	8726cba0b9	Merge pull request #103 from FireFart/xml Xml	2013-01-10 01:50:09 -08:00
Christian Mehlmauer	4062e4dfbc	Renamed XML	2013-01-09 23:01:30 +01:00
Christian Mehlmauer	c63d879d56	Updated popular plugins	2013-01-09 22:59:12 +01:00
Christian Mehlmauer	a6ad818496	Support multiple references	2013-01-09 22:48:24 +01:00
Christian Mehlmauer	320e419518	Added new vulns (verified them with WP3.5 and the latest Plugin version)	2013-01-09 22:10:43 +01:00
erwanlr	cf102a04b1	Added google-document-embedder Arbitrary File Disclosure	2013-01-08 17:00:17 +01:00
erwanlr	95bab0546e	Added extended-user-profile FPD	2013-01-08 16:51:21 +01:00
erwanlr	9254e809fc	Added superslider-show FPD	2013-01-08 16:49:47 +01:00
erwanlr	140cc4882f	Adedd multibox FPD	2013-01-08 16:48:24 +01:00
erwanlr	f23a5abf60	Added OpenInviter Information Disclosure <- hot one xD)	2013-01-07 18:21:46 +01:00
erwanlr	1956e3ff46	Fomatting, local vuln hashes added	2013-01-07 16:58:07 +01:00
erwanlr	980aa7198a	Added html & htm extension in the local scanning	2013-01-07 14:39:37 +01:00
erwanlr	8894e42adf	missing xml encoding & tag added	2013-01-07 14:29:40 +01:00
erwanlr	87d5d93030	Fix #98 wpstools options to locally scan a wp installation for vulnerable files	2013-01-07 14:24:21 +01:00
erwanlr	db7416c5a6	Added plugin wp-superb-slideshow FPD	2013-01-06 15:45:14 +01:00
erwanlr	2742500df5	Added RokBox multiple vulns	2013-01-06 15:42:50 +01:00
erwanlr	1ed133c4c8	Added theme onepagewebsite FPD	2013-01-06 15:37:08 +01:00
erwanlr	80ec2ec86e	Added 4 premium themes FPD	2013-01-06 15:33:53 +01:00
erwanlr	192b5862b4	grou-random-image-widget FPD	2013-01-06 15:25:49 +01:00
erwanlr	6f406fe807	Sintic_gallery FPD & file upload	2013-01-06 15:23:21 +01:00
erwanlr	ba2a4fa0aa	Theme vulns identation	2013-01-06 15:05:38 +01:00
erwanlr	f8ba2b71f8	Added Moneymasters FDP & File upload	2013-01-06 15:02:39 +01:00
erwanlr	2f76277a28	Added wp-useronline Persistent XSS & FPD	2013-01-04 16:35:51 +01:00
erwanlr	e2bb5dc24f	Added Shopping cart multi (SQLi & file upload)	2013-01-03 16:35:07 +01:00
erwanlr	473a2446ae	Added Reflex Gallery file upload	2013-01-03 16:33:08 +01:00
erwanlr	a91c45e548	Added uploader 1.0.4 file upload	2013-01-03 16:19:54 +01:00
erwanlr	716ff61ff9	Added xerte-online upload file	2013-01-03 15:50:57 +01:00
erwanlr	c850b231e0	Added advanced-custom-fields <= 3.5.1 RFI	2013-01-03 15:01:46 +01:00
erwanlr	b95110375e	sitepress-multilingual-cms FPD added	2013-01-01 16:09:12 +01:00
Mark Stanislav	56e96dc97b	Addition of an AUTHBYPASS type for plugins that will operate without a valid WordPress session and/or adequate privilege, creating a vulnerability due to its functionality. Also, added a portable-phpMyAdmin vulnerability to the plugin vulnerability listing utilizing the aforementioned new type.	2012-12-13 14:07:22 -05:00
ethicalhack3r	19bcc9263c	Fixed typo	2012-12-12 20:34:09 +01:00
ethicalhack3r	194645eb5d	Added asset-manager plugin vuln to db	2012-12-12 20:20:17 +01:00

1 2

92 Commits