Nmap Development mailing list archives
Re: Question about the output received from http-wordpress-plugins.nse
From: Gutek <ange.gutek () gmail com>
Date: Sat, 03 Mar 2012 13:57:16 +0100
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Le 29/02/2012 05:55, David Arrington a écrit :
Hi, I just ran a test to a server trying to find the plugins that a wordpress site is using. I did this searching for the top 100 plugins only. When I did this the output showed all 100 plugins. I know that not all of these plugins are installed, so I must be using this script incorrectly. Can someone familiar with this script give me an example of how to use it to find the plugins? Is there something else I need to do to see which of those 100 plugins are actually installed? Thank you!
I've tried to reproduce this against a bunch of websites but with no success. My guess is that you have found a special case that I didn't test when writing this script. I also think that it has something to do with the way your target handles 404 conditions, probably with some custom page showing like a 200 (thereby fooling the script). That would be interesting to investigate because this particular case should be covered. With the --script-trace that David has suggested, I'm also curious about your target : I'd be glad if you reveal it (even privately, feel free to mail me apart on that point) so I can figure it out on my own. That said, please find attached an update for the Wordpress plugins database. It has grown from some 14K plugins to 18.5K to date. There are also numerous changes in the top 100. Before it's included in the official Nmap release, users can simply untar in their /nmap/nselib/data/ directory. Regards, A.G. -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.16 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAk9SFSwACgkQ3aDTTO0ha7i7dACfSDUp9Irm9vIijVbr8WDxfBbr WPQAnioPyRVd7QfpiVPEpnL4RJCdKxw6 =OHOe -----END PGP SIGNATURE-----
Attachment:
wp-plugins.lst.tar.gz
Description:
_______________________________________________ Sent through the nmap-dev mailing list http://cgi.insecure.org/mailman/listinfo/nmap-dev Archived at http://seclists.org/nmap-dev/
Current thread:
- Question about the output received from http-wordpress-plugins.nse David Arrington (Feb 28)
- Re: Question about the output received from http-wordpress-plugins.nse David Fifield (Mar 02)
- Re: Question about the output received from http-wordpress-plugins.nse Gutek (Mar 03)
- wp-plugins.lst update David Fifield (Mar 06)
- Re: wp-plugins.lst update Gutek (Mar 07)
- Re: wp-plugins.lst update David Fifield (Mar 08)
- wp-plugins.lst update David Fifield (Mar 06)
- Re: Question about the output received from http-wordpress-plugins.nse David Fifield (Mar 08)
- Re: Question about the output received from http-wordpress-plugins.nse Gutek (Mar 09)
- Re: Question about the output received from http-wordpress-plugins.nse David Fifield (Mar 14)