Dump of wpscan output
#+BEGINEXAMPLE
$ wpscan –url zintis.net –api-token xLBReBlUMH3fsOHWGuawNfnQZe77qj6EU0pLgM7SAwg _ _ __ _ \ \ / / _ \ / ___| \ \ /\ / /| |) | (_ _ _ _ _ _ ® \ \/ \/ / | / \ \ / _|/ _` | ' \ \ \ / | | __) | (__| (_| | | | | \ \/ |_| |_____/ \___|\__,_|_| |_|
WordPress Security Scanner by the WPScan Team Version 3.8.15 Sponsored by Automattic - https://automattic.com/ @WPScan_, @ethicalhack3r, @erwanlr, @firefart _
[+] URL: http://zintis.net/ [139.177.192.45] [+] Effective URL: https://zintis.net/ [+] Started: Thu May 27 13:10:41 2021
Interesting Finding(s):
[+] Headers
Interesting Entries: |
- Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g |
- X-Powered-By: PHP/7.2.24 |
Found By: Headers (Passive Detection) |
Confidence: 100% |
[+] WordPress version 5.7.2 identified (Latest, released on 2021-05-12).
Found By: Rss Generator (Passive Detection) |
- https://zintis.net/feed/, <generator>https://wordpress.org/?v=5.7.2</generator> |
- https://zintis.net/comments/feed/, <generator>https://wordpress.org/?v=5.7.2</generator> |
[+] WordPress theme in use: astra
Location: http://zintis.net/wp-content/themes/astra/ |
Latest Version: 3.4.6 |
Last Updated: 2021-05-24T00:00:00.000Z |
Style URL: http://zintis.net/wp-content/themes/astra/style.css |
Found By: Urls In Homepage (Passive Detection) |
Confirmed By: Urls In 404 Page (Passive Detection) |
The version could not be determined. |
[+] Enumerating All Plugins (via Passive Methods) [+] Checking Plugin Versions (via Passive and Aggressive Methods)
[i] Plugin(s) Identified:
[+] elementor
Location: http://zintis.net/wp-content/plugins/elementor/ |
Latest Version: 3.2.3 (up to date) |
Last Updated: 2021-05-26T18:02:00.000Z |
Found By: Urls In Homepage (Passive Detection) |
Version: 3.2.4 (20% confidence) |
Found By: Query Parameter (Passive Detection) |
- https://zintis.net/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.2.4 |
- https://zintis.net/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.2.4 |
[+] wpforms-lite
[+] Enumerating Config Backups (via Passive and Aggressive Methods) Checking Config Backups - Time: 00:00:00 <============================================================> (137 / 137) 100.00% Time: 00:00:00
[i] No Config Backups Found.
[+] WPScan DB API OK
Plan: free |
Requests Done (during the scan): 4 |
Requests Remaining: 21 |
[+] Finished: Thu May 27 13:10:44 2021 [+] Requests Done: 145 [+] Cached Requests: 49 [+] Data Sent: 29.278 KB [+] Data Received: 99.063 KB [+] Memory used: 245.879 MB [+] Elapsed time: 00:00:03 /Users/zintis/eg[534]:
1 Upgrading wp and wp plugins
see the file ??? (I am checking now) Ok, so I have no file on this yet. But here are some links I followed to upgrade my wordpress:
#+ENDEXAMPLE