Wordpress RDF User Enumeration

What is the "Wordpress RDF User Enumeration?"

The "Wordpress RDF User Enumeration" module is designed to detect user enumeration vulnerabilities in WordPress websites. WordPress is a popular content management system (CMS) used by millions of websites worldwide. This module focuses on identifying potential security weaknesses related to user enumeration in WordPress installations.

The severity of this module is classified as informative, meaning it provides valuable information about potential vulnerabilities but does not directly exploit or compromise the system.

This module was authored by r3dg33k.

Impact

User enumeration vulnerabilities in WordPress can allow attackers to gather sensitive information about valid user accounts, such as usernames or email addresses. This information can be used in further attacks, such as brute-force login attempts or targeted phishing campaigns. By detecting these vulnerabilities, website owners can take appropriate measures to mitigate the risk of unauthorized access to user accounts.

How does the module work?

The "Wordpress RDF User Enumeration" module works by sending HTTP requests to the target WordPress website and analyzing the responses for specific patterns. It checks if the website's RSS feed in RDF format is accessible and examines the response headers and body for indicators of user enumeration vulnerabilities.

One example of an HTTP request sent by this module is:

GET /feed/rdf

The module then applies the following matching conditions:

- The response header must contain the word "application/rdf+xml". - The response body must contain the strings "<rdf:RDF" and "<dc:creator>". - The HTTP status code must be 200 (OK).

If all of these conditions are met, the module reports a potential user enumeration vulnerability.