Ethical Hacking Automation

Automate Recon and scanning process with Vidoc. All security teams in one place

WordPress bbPress Plugin Directory Listing

By kannthu

Vidoc logoVidoc Module

What is the "WordPress bbPress Plugin Directory Listing?"

The "WordPress bbPress Plugin Directory Listing" module is designed to detect sensitive directories present in the bbPress WordPress plugin. It is a test case used in the Vidoc platform to scan for misconfigurations or vulnerabilities in the plugin.

This module has an informative severity level, meaning it provides valuable information but does not indicate a critical security issue.

Author: dhiyaneshDK


This module helps identify if the bbPress WordPress plugin has directory listing enabled. Directory listing allows anyone to view the contents of a directory on a web server, potentially exposing sensitive information such as file names, directory structure, and even source code.

How the module works?

The "WordPress bbPress Plugin Directory Listing" module sends a GET request to the "/wp-content/plugins/bbpress/" path of the WordPress website. It then applies two matching conditions:

    - The response body must contain the words "Index of" and "/wp-content/plugins/bbpress/". - The response status code must be 200 (OK).

If both conditions are met, the module considers the directory listing enabled and reports it as a potential security issue.

Example HTTP request:

GET /wp-content/plugins/bbpress/ HTTP/1.1

The module checks if the response body contains the words "Index of" and "/wp-content/plugins/bbpress/". It also verifies that the response status code is 200 (OK).

By detecting directory listing, website owners can take appropriate measures to secure their bbPress plugin installation and prevent unauthorized access to sensitive information.

Module preview

Concurrent Requests (1)
1. HTTP Request template
Matching conditions
word: Index of, /wp-content/plugins/bbpress/and
status: 200
Passive global matcher
No matching conditions.
On match action
Report vulnerability