Ethical Hacking Automation

Automate Recon and scanning process with Vidoc. All security teams in one place


By kannthu

Vidoc logoVidoc Module

What is the "alfacgiapi" module?

The "alfacgiapi" module is designed to detect sensitive directories present in the alfacgiapi plugin for WordPress. It is a test case used in the Vidoc platform to scan for misconfigurations, vulnerabilities, or software fingerprints. The severity of this module is classified as low.

This module was authored by pussycat0x.


This module helps identify potential security risks in the alfacgiapi plugin. By detecting sensitive directories, it can help prevent unauthorized access or data leakage.

How does the module work?

The "alfacgiapi" module works by sending HTTP requests to specific paths associated with the alfacgiapi plugin. It then applies matching conditions to determine if sensitive directories are present.

For example, one of the matching conditions checks for the presence of the phrase "Index of" in the response body. Additionally, it checks for specific paths related to the plugin, such as "/wp-content/plugins/" and "/wp-includes/ALFA_DATA/". The module also verifies that the HTTP response status is 200.

By combining these matching conditions, the module can identify potential misconfigurations or vulnerabilities in the alfacgiapi plugin.

For more information, you can refer to the reference.

Metadata: max-request: 4

Module preview

Concurrent Requests (1)
1. HTTP Request template
GET/wp-includes/ALFA_DA.../wp-content/uploads/.../ALFA_DATA/alfacgiap...(+1 paths)
Matching conditions
word: Index ofand
word: /wp-content/plugins/, /wp-includes/ALFA_...and
status: 200
Passive global matcher
No matching conditions.
On match action
Report vulnerability