Notes
Notes - notes.io |
_______________________________________________________________
__ _______ _____
/ / __ / ____|
/ / /| |__) | (___ ___ __ _ _ __
/ / / | ___/ ___ / __|/ _` | '_
/ / | | ____) | (__| (_| | | | |
/ / |_| |_____/ ___|__,_|_| |_|
WordPress Security Scanner by the WPScan Team
Version 2.9
Sponsored by Sucuri - https://sucuri.net
@_WPScan_, @ethicalhack3r, @erwan_lr, pvdl, @_FireFart_
_______________________________________________________________
[i] It seems like you have not updated the database for some time.
[?] Do you want to update now? [Y]es [N]o [A]bort, default: [N]n
[i] The remote host tried to redirect to: https://www.cybrary.it/
[?] Do you want follow the redirection ? [Y]es [N]o [A]bort, default: [N]y
[+] URL: https://www.cybrary.it/
[+] Started: Sat Oct 22 22:15:58 2016
[+] robots.txt available under: 'https://www.cybrary.it/robots.txt'
[+] Interesting entry from robots.txt: https://www.cybrary.it/wp-login.php
[+] Interesting header: CF-RAY: 2f5e6d35e84c31a4-SIN
[+] Interesting header: LINK: <https://www.cybrary.it/wp-json/>; rel="https://api.w.org/"
[+] Interesting header: LINK: <https://www.cybrary.it/>; rel=shortlink
[+] Interesting header: SERVER: cloudflare-nginx
[+] Interesting header: X-POWERED-BY: W3 Total Cache/0.9.5
[+] XML-RPC Interface available under: https://www.cybrary.it/xmlrpc.php
[+] WordPress version 2.8.2 identified from stylesheets numbers
[!] 11 vulnerabilities identified from the version number
[!] Title: WordPress 1.5.1 - 3.5 XMLRPC Pingback API Internal/External Port Scanning
Reference: https://wpvulndb.com/vulnerabilities/5988
Reference: https://github.com/FireFart/WordpressPingbackPortScanner
Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0235
[i] Fixed in: 3.5.1
[!] Title: WordPress 1.5.1 - 3.5 XMLRPC pingback additional issues
Reference: https://wpvulndb.com/vulnerabilities/5989
Reference: http://lab.onsec.ru/2013/01/wordpress-xmlrpc-pingback-additional.html
[!] Title: WordPress 2.5 - 3.3.1 XSS in swfupload
Reference: https://wpvulndb.com/vulnerabilities/5999
Reference: http://seclists.org/fulldisclosure/2012/Nov/51
[i] Fixed in: 3.3.2
[!] Title: WordPress 2.0 - 3.0.1 wp-includes/comment.php Bypass Spam Restrictions
Reference: https://wpvulndb.com/vulnerabilities/6009
Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-5293
Reference: http://osvdb.org/show/osvdb/104693
[i] Fixed in: 3.0.2
[!] Title: WordPress 2.0 - 3.0.1 Multiple Cross-Site Scripting (XSS) in request_filesystem_credentials()
Reference: https://wpvulndb.com/vulnerabilities/6010
Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-5294
[i] Fixed in: 3.0.2
[!] Title: WordPress 2.0 - 3.0.1 Cross-Site Scripting (XSS) in wp-admin/plugins.php
Reference: https://wpvulndb.com/vulnerabilities/6011
Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-5295
[i] Fixed in: 3.0.2
[!] Title: WordPress 2.0 - 3.0.1 wp-includes/capabilities.php Remote Authenticated Administrator Delete Action Bypass
Reference: https://wpvulndb.com/vulnerabilities/6012
Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-5296
[i] Fixed in: 3.0.2
[!] Title: WordPress 2.0 - 3.0 Remote Authenticated Administrator Add Action Bypass
Reference: https://wpvulndb.com/vulnerabilities/6013
Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-5297
Reference: http://osvdb.org/show/osvdb/104691
[i] Fixed in: 3.0
[!] Title: WordPress 2.0.3 - 3.9.1 (except 3.7.4 / 3.8.4) CSRF Token Brute Forcing
Reference: https://wpvulndb.com/vulnerabilities/7528
Reference: https://core.trac.wordpress.org/changeset/29384
Reference: https://core.trac.wordpress.org/changeset/29408
Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-5204
Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-5205
[i] Fixed in: 3.9.2
[!] Title: WordPress <= 4.0 - Long Password Denial of Service (DoS)
Reference: https://wpvulndb.com/vulnerabilities/7681
Reference: http://www.behindthefirewalls.com/2014/11/wordpress-denial-of-service-responsible-disclosure.html
Reference: https://wordpress.org/news/2014/11/wordpress-4-0-1/
Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9034
Reference: http://osvdb.org/show/osvdb/114857
Reference: https://www.rapid7.com/db/modules/auxiliary/dos/http/wordpress_long_password_dos
Reference: https://www.exploit-db.com/exploits/35413/
Reference: https://www.exploit-db.com/exploits/35414/
[i] Fixed in: 4.0.1
[!] Title: WordPress <= 4.0 - Server Side Request Forgery (SSRF)
Reference: https://wpvulndb.com/vulnerabilities/7696
Reference: http://www.securityfocus.com/bid/71234/
Reference: https://core.trac.wordpress.org/changeset/30444
Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9038
[i] Fixed in: 4.0.1
[+] WordPress theme in use: u-design
[+] Name: u-design
| Location: https://www.cybrary.it/wp-content/themes/u-design/
| Style URL: https://www.cybrary.it/wp-content/themes/u-design/style.css
| Referenced style.css: https://www.cybrary.it/wp-content/themes/u-design/styles/style1/css/style.css
| Description:
[!] We could not determine a version so all vulnerabilities are printed out
[!] Title: uDesign Theme 1.8.0-2.7.9 - DOM Cross-Site Scripting (XSS)
Reference: https://wpvulndb.com/vulnerabilities/8177
Reference: http://themeforest.net/item/udesign-responsive-wordpress-theme/253220
[i] Fixed in: 2.7.10
[+] Enumerating plugins from passive detection ...
| 19 plugins found:
[+] Name: bbpress - v2.5.10
| Latest version: 2.5.8 (up to date)
| Location: https://www.cybrary.it/wp-content/plugins/bbpress/
| Readme: https://www.cybrary.it/wp-content/plugins/bbpress/readme.txt
[+] Name: bp-ajax-registration
| Location: https://www.cybrary.it/wp-content/plugins/bp-ajax-registration/
[+] Name: bpdev-username-availability-checker - v1.1.1
| Latest version: 1.1.1 (up to date)
| Location: https://www.cybrary.it/wp-content/plugins/bpdev-username-availability-checker/
| Readme: https://www.cybrary.it/wp-content/plugins/bpdev-username-availability-checker/readme.txt
[+] Name: buddypress - v2.6.2
| Latest version: 2.4.3 (up to date)
| Location: https://www.cybrary.it/wp-content/plugins/buddypress/
| Readme: https://www.cybrary.it/wp-content/plugins/buddypress/readme.txt
[+] Name: dk-pricr-responsive-pricing-table - v4.3
| Latest version: 4.2.1 (up to date)
| Location: https://www.cybrary.it/wp-content/plugins/dk-pricr-responsive-pricing-table/
| Readme: https://www.cybrary.it/wp-content/plugins/dk-pricr-responsive-pricing-table/readme.txt
[+] Name: essential-grid
| Location: https://www.cybrary.it/wp-content/plugins/essential-grid/
[+] Name: geo-job-manager
| Location: https://www.cybrary.it/wp-content/plugins/geo-job-manager/
[+] Name: resume-manager-geolocation
| Location: https://www.cybrary.it/wp-content/plugins/resume-manager-geolocation/
[+] Name: revslider
| Location: https://www.cybrary.it/wp-content/plugins/revslider/
[!] We could not determine a version so all vulnerabilities are printed out
[!] Title: WordPress Slider Revolution Local File Disclosure
Reference: https://wpvulndb.com/vulnerabilities/7540
Reference: http://blog.sucuri.net/2014/09/slider-revolution-plugin-critical-vulnerability-being-exploited.html
Reference: http://marketblog.envato.com/general/affected-themes/
Reference: http://packetstormsecurity.com/files/129761/
Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1579
Reference: http://osvdb.org/show/osvdb/109645
Reference: https://www.exploit-db.com/exploits/34511/
Reference: https://www.exploit-db.com/exploits/36039/
[i] Fixed in: 4.1.5
[!] Title: WordPress Slider Revolution Shell Upload
Reference: https://wpvulndb.com/vulnerabilities/7954
Reference: https://whatisgon.wordpress.com/2014/11/30/another-revslider-vulnerability/
Reference: http://osvdb.org/show/osvdb/115118
Reference: https://www.rapid7.com/db/modules/exploit/unix/webapp/wp_revslider_upload_execute
Reference: https://www.exploit-db.com/exploits/35385/
[i] Fixed in: 3.0.96
[+] Name: simple-social-icons - v1.0.13
| Latest version: 1.0.13 (up to date)
| Location: https://www.cybrary.it/wp-content/plugins/simple-social-icons/
| Readme: https://www.cybrary.it/wp-content/plugins/simple-social-icons/readme.txt
[+] Name: tablepress - v1.7
| Latest version: 1.7 (up to date)
| Location: https://www.cybrary.it/wp-content/plugins/tablepress/
| Readme: https://www.cybrary.it/wp-content/plugins/tablepress/readme.txt
[+] Name: ubermenu
| Location: https://www.cybrary.it/wp-content/plugins/ubermenu/
| Readme: https://www.cybrary.it/wp-content/plugins/ubermenu/readme.txt
[+] Name: wp-commentnavi - v1.12
| Latest version: 1.12 (up to date)
| Location: https://www.cybrary.it/wp-content/plugins/wp-commentnavi/
| Readme: https://www.cybrary.it/wp-content/plugins/wp-commentnavi/readme.txt
[+] Name: wp-job-manager - v1.25.1
| Latest version: 1.23.13 (up to date)
| Location: https://www.cybrary.it/wp-content/plugins/wp-job-manager/
| Readme: https://www.cybrary.it/wp-content/plugins/wp-job-manager/readme.txt
| Changelog: https://www.cybrary.it/wp-content/plugins/wp-job-manager/changelog.txt
[+] Name: wp-job-manager-applications - v2.2.3
| Location: https://www.cybrary.it/wp-content/plugins/wp-job-manager-applications/
| Readme: https://www.cybrary.it/wp-content/plugins/wp-job-manager-applications/readme.txt
[+] Name: wp-job-manager-resumes - v1.15.2
| Location: https://www.cybrary.it/wp-content/plugins/wp-job-manager-resumes/
| Readme: https://www.cybrary.it/wp-content/plugins/wp-job-manager-resumes/readme.txt
[+] Name: wp-job-manager-tags - v1.3.8
| Location: https://www.cybrary.it/wp-content/plugins/wp-job-manager-tags/
| Readme: https://www.cybrary.it/wp-content/plugins/wp-job-manager-tags/readme.txt
[+] Name: wp-pagenavi - v2.91
| Latest version: 2.89.1 (up to date)
| Location: https://www.cybrary.it/wp-content/plugins/wp-pagenavi/
| Readme: https://www.cybrary.it/wp-content/plugins/wp-pagenavi/readme.txt
[+] Name: w3-total-cache - v0.9.5
| Latest version: 0.9.4.1 (up to date)
| Location: https://www.cybrary.it/wp-content/plugins/w3-total-cache/
| Readme: https://www.cybrary.it/wp-content/plugins/w3-total-cache/readme.txt
| Changelog: https://www.cybrary.it/wp-content/plugins/w3-total-cache/changelog.txt
[+] Enumerating usernames ...
[+] Identified the following 4 user/s:
+----+-------------+------------+
| Id | Login | Name |
+----+-------------+------------+
| 1 | cybra_admin | Hawk |
| 4 | ryan | RY4N C0R3Y |
| 5 | apeek | GoAskAP |
| 6 | ralphs | R |
+----+-------------+------------+
[+] Finished: Sat Oct 22 22:23:47 2016
[+] Requests Done: 163
[+] Memory used: 81.984 MB
[+] Elapsed time: 00:07:49
|
|
Notes.io is a web-based application for taking notes. You can take your notes and share with others people. If you like taking long notes, notes.io is designed for you. To date, over 8,000,000,000 notes created and continuing...
With notes.io;
- * You can take a note from anywhere and any device with internet connection.
- * You can share the notes in social platforms (YouTube, Facebook, Twitter, instagram etc.).
- * You can quickly share your contents without website, blog and e-mail.
- * You don't need to create any Account to share a note. As you wish you can use quick, easy and best shortened notes with sms, websites, e-mail, or messaging services (WhatsApp, iMessage, Telegram, Signal).
- * Notes.io has fabulous infrastructure design for a short link and allows you to share the note as an easy and understandable link.
Fast: Notes.io is built for speed and performance. You can take a notes quickly and browse your archive.
Easy: Notes.io doesn’t require installation. Just write and share note!
Short: Notes.io’s url just 8 character. You’ll get shorten link of your note when you want to share. (Ex: notes.io/q )
Free: Notes.io works for 12 years and has been free since the day it was started.
You immediately create your first note and start sharing with the ones you wish. If you want to contact us, you can use the following communication channels;
Email: [email protected]
Twitter: http://twitter.com/notesio
Instagram: http://instagram.com/notes.io
Facebook: http://facebook.com/notesio
Regards;
Notes.io Team
