Skip to content

anantshri/wpvulndb_cmd

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

18 Commits
.github/workflows
.github/workflows
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
example_usage.png
example_usage.png
 
 
wpvulndb_cmd.py
wpvulndb_cmd.py
 
 

Repository files navigation

wpvulndb_cmd

A commandline vulnerability reporter using WP-CLI and WPVulnDB

Usage

Specially useful for server admin's managing the wordpress backend and what a quick list of vulnerable plugin's. Running wpscan is a tiresome process and does non needed bruteforce. Being a server admin the list of plugin's / themes could be directly extracted.

ExampleUsage

CommandLine Options

usage: wpscancli.py [-h] --path PATH [--vulnonly]

This program is used to run a quick wordpress scan via wpscan api. This
command depends on wp-cli

optional arguments:
  -h, --help   show this help message and exit
  --path PATH  Provide URL
  --vulnonly   Only List vulnerable Items

Credit (C) Anant Shrivastava http://anantshri.info

Basic working

Wordpress management part is handed over to WP-CLI as it is doing its job too well. The list of plugin/theme's and respective versions is obtained from wp-cli are then used to extract results from wpvulndb.

To-do

  1. export report in csv/xml/json format

External Services used and credit where credit is due

  1. WP-CLI is used to get information from wordpress instance
  2. WPVulnDB API used to get the vulnerability data.

Project Rename

On 5th July 2017 We have renamed the project from wpvulndb_commandline to wpvulndb_cmd.

About

A commandline vulnerability reporter using WP-CLI and WPVulnDB

Resources

Readme

License

GPL-2.0 license
Activity

Stars

32 stars

Watchers

10 watching

Forks

9 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages