Nmap Development mailing list archives
wp-plugins.lst update
From: David Fifield <david () bamsoftware com>
Date: Tue, 6 Mar 2012 19:23:58 -0800
On Sat, Mar 03, 2012 at 01:57:16PM +0100, Gutek wrote:
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Le 29/02/2012 05:55, David Arrington a écrit :Hi, I just ran a test to a server trying to find the plugins that a wordpress site is using. I did this searching for the top 100 plugins only. When I did this the output showed all 100 plugins. I know that not all of these plugins are installed, so I must be using this script incorrectly. Can someone familiar with this script give me an example of how to use it to find the plugins? Is there something else I need to do to see which of those 100 plugins are actually installed? Thank you!I've tried to reproduce this against a bunch of websites but with no success. My guess is that you have found a special case that I didn't test when writing this script. I also think that it has something to do with the way your target handles 404 conditions, probably with some custom page showing like a 200 (thereby fooling the script). That would be interesting to investigate because this particular case should be covered. With the --script-trace that David has suggested, I'm also curious about your target : I'd be glad if you reveal it (even privately, feel free to mail me apart on that point) so I can figure it out on my own. That said, please find attached an update for the Wordpress plugins database. It has grown from some 14K plugins to 18.5K to date. There are also numerous changes in the top 100. Before it's included in the official Nmap release, users can simply untar in their /nmap/nselib/data/ directory.
I have committed your new list. Can you share the procedure you use to generate the list by popularity so we may document it? I noticed while looking at the diff that the plugin "gtranslate" was removed but a new one "gtrans" took its place. I'm assuming the plugin just changed its name. Does this mean that sites using the older name will not be detected? David Fifield _______________________________________________ Sent through the nmap-dev mailing list http://cgi.insecure.org/mailman/listinfo/nmap-dev Archived at http://seclists.org/nmap-dev/
Current thread:
- Question about the output received from http-wordpress-plugins.nse David Arrington (Feb 28)
- Re: Question about the output received from http-wordpress-plugins.nse David Fifield (Mar 02)
- Re: Question about the output received from http-wordpress-plugins.nse Gutek (Mar 03)
- wp-plugins.lst update David Fifield (Mar 06)
- Re: wp-plugins.lst update Gutek (Mar 07)
- Re: wp-plugins.lst update David Fifield (Mar 08)
- wp-plugins.lst update David Fifield (Mar 06)
- Re: Question about the output received from http-wordpress-plugins.nse David Fifield (Mar 08)
- Re: Question about the output received from http-wordpress-plugins.nse Gutek (Mar 09)
- Re: Question about the output received from http-wordpress-plugins.nse David Fifield (Mar 14)