API tools faq
paste
Advertisement
Sweetening

Untitled

Sweetening
Nov 2nd, 2023
83
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 4.54 KB | None | 0 0
raw download clone embed print report
  1. [+] URL: https://kennetherwinengelhardt.com/ [190.97.163.67]
  2. [+] Started: Thu Nov 2 20:08:57 2023
  3.  
  4. Interesting Finding(s):
  5.  
  6. [+] Headers
  7. | Interesting Entries:
  8. | - Server: Apache
  9. | - X-Nitro-Cache: HIT
  10. | - X-Nitro-Cache-From: drop-in
  11. | - x-nitro-rev: 82671a5
  12. | - x-cache-ctime: 1698464215
  13. | Found By: Headers (Passive Detection)
  14. | Confidence: 100%
  15.  
  16. [+] robots.txt found: https://kennetherwinengelhardt.com/robots.txt
  17. | Interesting Entries:
  18. | - /wp-admin/
  19. | - /wp-admin/admin-ajax.php
  20. | Found By: Robots Txt (Aggressive Detection)
  21. | Confidence: 100%
  22.  
  23. [+] XML-RPC seems to be enabled: https://kennetherwinengelhardt.com/xmlrpc.php
  24. | Found By: Direct Access (Aggressive Detection)
  25. | Confidence: 100%
  26. | References:
  27. | - http://codex.wordpress.org/XML-RPC_Pingback_API
  28. | - https://www.rapid7.com/db/modules/auxiliary/scanner/http/wordpress_ghost_scanner/
  29. | - https://www.rapid7.com/db/modules/auxiliary/dos/http/wordpress_xmlrpc_dos/
  30. | - https://www.rapid7.com/db/modules/auxiliary/scanner/http/wordpress_xmlrpc_login/
  31. | - https://www.rapid7.com/db/modules/auxiliary/scanner/http/wordpress_pingback_access/
  32.  
  33. [+] WordPress readme found: https://kennetherwinengelhardt.com/readme.html
  34. | Found By: Direct Access (Aggressive Detection)
  35. | Confidence: 100%
  36.  
  37. [+] This site has 'Must Use Plugins': https://kennetherwinengelhardt.com/wp-content/mu-plugins/
  38. | Found By: Direct Access (Aggressive Detection)
  39. | Confidence: 80%
  40. | Reference: http://codex.wordpress.org/Must_Use_Plugins
  41.  
  42. [+] Upload directory has listing enabled: https://kennetherwinengelhardt.com/wp-content/uploads/
  43. | Found By: Direct Access (Aggressive Detection)
  44. | Confidence: 100%
  45.  
  46. [+] The external WP-Cron seems to be enabled: https://kennetherwinengelhardt.com/wp-cron.php
  47. | Found By: Direct Access (Aggressive Detection)
  48. | Confidence: 60%
  49. | References:
  50. | - https://www.iplocation.net/defend-wordpress-from-ddos
  51. | - https://github.com/wpscanteam/wpscan/issues/1299
  52.  
  53. [+] WordPress version 6.3.2 identified (Latest, released on 2023-10-12).
  54. | Found By: Rss Generator (Passive Detection)
  55. | - https://kennetherwinengelhardt.com/feed/, <generator>https://wordpress.org/?v=6.3.2</generator>
  56. | - https://kennetherwinengelhardt.com/comments/feed/, <generator>https://wordpress.org/?v=6.3.2</generator>
  57.  
  58. [+] WordPress theme in use: newsphere
  59. | Location: https://kennetherwinengelhardt.com/wp-content/themes/newsphere/
  60. | Latest Version: 3.2.6 (up to date)
  61. | Last Updated: 2023-08-08T00:00:00.000Z
  62. | Readme: https://kennetherwinengelhardt.com/wp-content/themes/newsphere/readme.txt
  63. | Style URL: https://kennetherwinengelhardt.com/wp-content/themes/newsphere/style.css?ver=6.3.2
  64. | Style Name: Newsphere
  65. | Style URI: https://afthemes.com/products/newsphere/
  66. | Description: Newsphere is a perfect news and magazine responsive WordPress theme that lets you write articles and...
  67. | Author: AF themes
  68. | Author URI: https://www.afthemes.com/
  69. |
  70. | Found By: Css Style In 404 Page (Passive Detection)
  71. |
  72. | Version: 3.2.6 (80% confidence)
  73. | Found By: Style (Passive Detection)
  74. | - https://kennetherwinengelhardt.com/wp-content/themes/newsphere/style.css?ver=6.3.2, Match: 'Version: 3.2.6'
  75.  
  76. [+] Enumerating All Plugins (via Passive Methods)
  77. [+] Checking Plugin Versions (via Passive and Aggressive Methods)
  78.  
  79. [i] Plugin(s) Identified:
  80.  
  81. [+] column-shortcodes
  82. | Location: https://kennetherwinengelhardt.com/wp-content/plugins/column-shortcodes/
  83. | Latest Version: 1.0.1 (up to date)
  84. | Last Updated: 2022-10-11T12:57:00.000Z
  85. |
  86. | Found By: Urls In 404 Page (Passive Detection)
  87. |
  88. | Version: 1.0.1 (100% confidence)
  89. | Found By: Readme - Stable Tag (Aggressive Detection)
  90. | - https://kennetherwinengelhardt.com/wp-content/plugins/column-shortcodes/readme.txt
  91. | Confirmed By: Readme - ChangeLog Section (Aggressive Detection)
  92. | - https://kennetherwinengelhardt.com/wp-content/plugins/column-shortcodes/readme.txt
  93.  
  94. [+] Enumerating Config Backups (via Passive and Aggressive Methods)
  95. Checking Config Backups - Time: 00:00:24 <=========================================> (137 / 137) 100.00% Time: 00:00:24
  96.  
  97. [i] No Config Backups Found.
  98.  
  99. [!] No WPScan API Token given, as a result vulnerability data has not been output.
  100. [!] You can get a free API token with 25 daily requests by registering at https://wpscan.com/register
  101.  
  102. [+] Finished: Thu Nov 2 20:09:43 2023
  103. [+] Requests Done: 184
  104. [+] Cached Requests: 5
  105. [+] Data Sent: 50.154 KB
  106. [+] Data Received: 13.549 MB
  107. [+] Memory used: 267.867 MB
  108. [+] Elapsed time: 00:00:45
  109. root@debian:/home/user1#
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!