Ethical Hacking Automation

Automate Recon and scanning process with Vidoc. All security teams in one place

WordPress Plugin Qards

By kannthu

Vidoc logoVidoc Module

What is the "WordPress Plugin Qards?"

The "WordPress Plugin Qards" module is designed to detect sensitive directories present in the Qards plugin. Qards is a WordPress plugin that allows users to create beautiful and responsive landing pages, portfolios, and listings. This module has an informative severity level, meaning it provides valuable information but does not indicate a critical vulnerability. The original author of this module is pussycat0x.


This module helps identify potential misconfigurations or vulnerabilities in the Qards plugin. By detecting sensitive directories, it can help website owners ensure that their Qards installation is properly secured and prevent unauthorized access to sensitive information.

How does the module work?

The "WordPress Plugin Qards" module works by sending an HTTP request to the "/wp-content/plugins/qards/" path of the target website. It then applies matching conditions to determine if the response indicates the presence of sensitive directories.

Matching conditions:

- The response body contains the phrase "Index of" and "/wp-content/plugins/qards". - The response status code is 200 (indicating a successful request).

If both matching conditions are met, the module reports the presence of sensitive directories in the Qards plugin.

Example HTTP request:

GET /wp-content/plugins/qards/

This module is a valuable tool for website administrators and security professionals to assess the security of their Qards plugin installation and take appropriate measures to mitigate any potential risks.

Module preview

Concurrent Requests (1)
1. HTTP Request template
Matching conditions
word: Index of, /wp-content/plugins/qardsand
status: 200
Passive global matcher
No matching conditions.
On match action
Report vulnerability