{
"banner": {
"description": "WordPress Security Scanner by the WPScan Team",
"version": "3.7.5",
"authors": [
"@_WPScan_",
"@ethicalhack3r",
"@erwan_lr",
"@_FireFart_"
],
"sponsor": "WPScan.io - Online WordPress Vulnerability Scanner"
},
"start_time": 1573482044,
"start_memory": 50507776,
"target_url": "http://www.lagardelanguages.com/",
"effective_url": "http://www.lagardelanguages.com/",
"interesting_findings": [
{
"url": "http://www.lagardelanguages.com/",
"to_s": "http://www.lagardelanguages.com/",
"type": "headers",
"found_by": "Headers (Passive Detection)",
"confidence": 100,
"confirmed_by": {
},
"references": {
},
"interesting_entries": [
"Server: nginx"
]
},
{
"url": "http://www.lagardelanguages.com/robots.txt",
"to_s": "http://www.lagardelanguages.com/robots.txt",
"type": "robots_txt",
"found_by": "Robots Txt (Aggressive Detection)",
"confidence": 100,
"confirmed_by": {
},
"references": {
},
"interesting_entries": [
"/wp-admin/",
"/wp-admin/admin-ajax.php"
]
},
{
"url": "http://www.lagardelanguages.com/xmlrpc.php",
"to_s": "http://www.lagardelanguages.com/xmlrpc.php",
"type": "xmlrpc",
"found_by": "Headers (Passive Detection)",
"confidence": 100,
"confirmed_by": {
"Link Tag (Passive Detection)": {
"confidence": 30
},
"Direct Access (Aggressive Detection)": {
"confidence": 100
}
},
"references": {
"url": [
"http://codex.wordpress.org/XML-RPC_Pingback_API"
],
"metasploit": [
"auxiliary/scanner/http/wordpress_ghost_scanner",
"auxiliary/dos/http/wordpress_xmlrpc_dos",
"auxiliary/scanner/http/wordpress_xmlrpc_login",
"auxiliary/scanner/http/wordpress_pingback_access"
]
},
"interesting_entries": [
]
},
{
"url": "http://www.lagardelanguages.com/readme.html",
"to_s": "http://www.lagardelanguages.com/readme.html",
"type": "readme",
"found_by": "Direct Access (Aggressive Detection)",
"confidence": 100,
"confirmed_by": {
},
"references": {
},
"interesting_entries": [
]
},
{
"url": "http://www.lagardelanguages.com/wp-cron.php",
"to_s": "http://www.lagardelanguages.com/wp-cron.php",
"type": "wp_cron",
"found_by": "Direct Access (Aggressive Detection)",
"confidence": 60,
"confirmed_by": {
},
"references": {
"url": [
"https://www.iplocation.net/defend-wordpress-from-ddos",
"https://github.com/wpscanteam/wpscan/issues/1299"
]
},
"interesting_entries": [
]
}
],
"version": {
"number": "5.1.3",
"release_date": "2019-10-14",
"status": "latest",
"found_by": "Rss Generator (Passive Detection)",
"confidence": 100,
"interesting_entries": [
"http://www.lagardelanguages.com/feed/, https://wordpress.org/?v=5.1.3",
"http://www.lagardelanguages.com/comments/feed/, https://wordpress.org/?v=5.1.3",
"http://www.lagardelanguages.com/sample-page/feed/, https://wordpress.org/?v=5.1.3"
],
"confirmed_by": {
},
"vulnerabilities": [
]
},
"main_theme": {
"slug": "liquorice",
"location": "http://www.lagardelanguages.com/wp-content/themes/liquorice/",
"latest_version": "2.3",
"last_updated": "2013-05-30T00:00:00.000Z",
"outdated": false,
"readme_url": "http://www.lagardelanguages.com/wp-content/themes/liquorice/readme.txt",
"directory_listing": false,
"error_log_url": null,
"style_url": "http://www.lagardelanguages.com/wp-content/themes/liquorice/style.css",
"style_name": "Liquorice",
"style_uri": "http://www.nudgedesign.ca/wordpress-themes/liquorice",
"description": "A simple and clean vintage looking theme for you to build on using Google's font API Lobster font. Custom background feature enabled.",
"author": "Nudge Design",
"author_uri": "http://www.nudgedesign.ca",
"template": null,
"license": "GNU General Public License v2.0",
"license_uri": "http://www.gnu.org/licenses/gpl-2.0.html",
"tags": "custom-background, two-columns, fixed-width, right-sidebar, light, brown, orange, blue",
"text_domain": null,
"found_by": "Css Style In Homepage (Passive Detection)",
"confidence": 100,
"interesting_entries": [
],
"confirmed_by": {
"Css Style In 404 Page (Passive Detection)": {
"confidence": 70,
"interesting_entries": [
]
}
},
"vulnerabilities": [
],
"version": {
"number": "2.3",
"confidence": 80,
"found_by": "Style (Passive Detection)",
"interesting_entries": [
"http://www.lagardelanguages.com/wp-content/themes/liquorice/style.css, Match: 'Version: 2.3'"
],
"confirmed_by": {
}
},
"parents": [
]
},
"plugins": {
"all-in-one-seo-pack": {
"slug": "all-in-one-seo-pack",
"location": "http://www.lagardelanguages.com/wp-content/plugins/all-in-one-seo-pack/",
"latest_version": "3.2.10",
"last_updated": "2019-10-17T15:07:00.000Z",
"outdated": true,
"readme_url": null,
"directory_listing": null,
"error_log_url": null,
"found_by": "Comment (Passive Detection)",
"confidence": 30,
"interesting_entries": [
],
"confirmed_by": {
},
"vulnerabilities": [
],
"version": {
"number": "3.1",
"confidence": 100,
"found_by": "Comment (Passive Detection)",
"interesting_entries": [
"http://www.lagardelanguages.com/, Match: 'All in One SEO Pack 3.1 by'"
],
"confirmed_by": {
"Readme - Stable Tag (Aggressive Detection)": {
"confidence": 80,
"interesting_entries": [
"http://www.lagardelanguages.com/wp-content/plugins/all-in-one-seo-pack/readme.txt"
]
}
}
}
},
"qtranslate": {
"slug": "qtranslate",
"location": "http://www.lagardelanguages.com/wp-content/plugins/qtranslate/",
"latest_version": null,
"last_updated": null,
"outdated": false,
"readme_url": null,
"directory_listing": null,
"error_log_url": null,
"found_by": "Urls In Homepage (Passive Detection)",
"confidence": 100,
"interesting_entries": [
],
"confirmed_by": {
"Urls In 404 Page (Passive Detection)": {
"confidence": 80,
"interesting_entries": [
]
}
},
"vulnerabilities": [
],
"version": null
}
},
"config_backups": {
"http://www.lagardelanguages.com/wp-config.txt": {
"found_by": "Direct Access (Aggressive Detection)",
"confidence": 100,
"interesting_entries": [
],
"confirmed_by": {
}
}
},
"users": {
"marie": {
"id": null,
"found_by": "Rss Generator (Passive Detection)",
"confidence": 100,
"interesting_entries": [
],
"confirmed_by": {
"Wp Json Api (Aggressive Detection)": {
"confidence": 100,
"interesting_entries": [
"http://www.lagardelanguages.com/wp-json/wp/v2/users/?per_page=100&page=1"
]
},
"Oembed API - Author URL (Aggressive Detection)": {
"confidence": 90,
"interesting_entries": [
"http://www.lagardelanguages.com/wp-json/oembed/1.0/embed?url=http://www.lagardelanguages.com/&format=json"
]
},
"Rss Generator (Aggressive Detection)": {
"confidence": 50,
"interesting_entries": [
]
},
"Author Id Brute Forcing - Author Pattern (Aggressive Detection)": {
"confidence": 100,
"interesting_entries": [
]
},
"Login Error Messages (Aggressive Detection)": {
"confidence": 100,
"interesting_entries": [
]
}
}
}
},
"password_attack": {
"marie": {
"password": "polluxtip"
}
},
"vuln_api": {
"error": "No WPVulnDB API Token given, as a result vulnerability data has not been output.\nYou can get a free API token with 50 daily requests by registering at https://wpvulndb.com/users/sign_up."
},
"stop_time": 1573482053,
"elapsed": 8,
"requests_done": 47,
"cached_requests": 52,
"data_sent": 19085,
"data_sent_humanised": "18.638 KB",
"data_received": 42204,
"data_received_humanised": "41.215 KB",
"used_memory": 200556544,
"used_memory_humanised": "191.266 MB"
}