Extracting and Enumerating Information From a WordPress Website

August 23, 2018 | Views: 4807

Begin Learning Cyber Security for FREE Now!

FREE REGISTRATIONAlready a Member Login Here

Don’t you just love it when a company has made their website in WordPress? Well, I do.

Well the truth is, with WordPress, when you are running it on premise or on a hosting website, your website is a potential danger. Be very careful of what you state on your website and what kind of data you ‘collect’ that will be saved into the database. For example, do you have employees who need to record their working hours? That is fine…just don’t do that through a WordPress website, especially not on an unsecured site that uses http:// instead of https://!

Today was one of those times when I like to do some exploring of tools, and I found a new one: WPScan. This tool is awesome! It probes a WordPress site, and there is tons of stuff you wanted to know, stuff you thought you needed to know, and stuff that is just handy to know. Let me show you what I mean. For this purpose, I fired up my webserver again and started WPScan on my Linux machine.

Right here, it is starting a scan against my own webserver running WordPress. You can see a lot of information is already found. Look at the XML-RPC interface available line. This could be a potential exploit to gain control of the website.

wpscan002

You can actually see the theme that is installed and used. Yep, it is Woocommerce. Currently, there are no plugins installed. This is correct. A list of plugins is very handy; you can see if your target has a security plugin installed or not that can act like a web application firewall.

wpscan003

Finally, there is the cherry on top of the cake. The scan enumerated 3 usernames. This is 100% bingo and thus correct. All these 3 usernames have the administrator role on this website.

wpscan004

Conclusion: Pretty scary, huh?

Share with Friends
FacebookTwitterGoogle+LinkedInEmail
Use Cybytes and
Tip the Author!
Join
Share with Friends
FacebookTwitterGoogle+LinkedInEmail
Ready to share your knowledge and expertise?
Comment on This

You must be logged in to post a comment.

Our Revolution

We believe Cyber Security training should be free, for everyone, FOREVER. Everyone, everywhere, deserves the OPPORTUNITY to learn, begin and grow a career in this fascinating field. Therefore, Cybrary is a free community where people, companies and training come together to give everyone the ability to collaborate in an open source way that is revolutionizing the cyber security educational experience.

Cybrary On The Go

Get the Cybrary app for Android for online and offline viewing of our lessons.

Get it on Google Play
 

Support Cybrary

Donate Here to Get This Month's Donor Badge

 
Skip to toolbar

We recommend always using caution when following any link

Are you sure you want to continue?

Continue
Cancel