Ethical Hacking Automation

Automate Recon and scanning process with Vidoc. All security teams in one place

WordPress Plugin Iwp-client Listing

By kannthu

Informative
Vidoc logoVidoc Module
#wordpress#listing#plugin#edb
Description

What is the "WordPress Plugin Iwp-client Listing?"

The "WordPress Plugin Iwp-client Listing" module is designed to detect sensitive directories present in the iwp-client plugin. It targets websites using WordPress and specifically focuses on the iwp-client plugin. The severity of this module is informative.

Impact

This module helps identify potential misconfigurations or vulnerabilities in the iwp-client plugin, which could expose sensitive directories on WordPress websites. By detecting these issues, website owners can take appropriate measures to secure their websites and protect sensitive information.

How the module works?

The "WordPress Plugin Iwp-client Listing" module works by sending an HTTP GET request to the "/wp-content/plugins/iwp-client/" path on the target website. It then applies matching conditions to determine if the response indicates the presence of sensitive directories.

The matching conditions used in this module are:

- Matcher 1: It checks if the response contains the words "Index of" and "wp-content/plugins/iwp-client/". - Matcher 2: It checks if the response status is 200 (OK).

If both matching conditions are met, the module considers the presence of sensitive directories in the iwp-client plugin.

Website owners can use the information provided by this module to address any misconfigurations or vulnerabilities in the iwp-client plugin and enhance the security of their WordPress websites.

Module preview

Concurrent Requests (1)
1. HTTP Request template
GET/wp-content/plugins/...
Matching conditions
word: Index of, wp-content/plugins/iwp-client/and
status: 200
Passive global matcher
No matching conditions.
On match action
Report vulnerability