nuclei-templates/http/fuzzing/wordpress-plugins-detect.yaml

id: wordpress-plugins-detect

info:
  name: WordPress Plugins Detection
  author: 0xcrypto
  severity: info
  metadata:
    max-request: 98135
  tags: fuzzing,brute-force,wordpress

http:
  - raw:
      - |
        GET /wp-content/plugins/{{pluginSlug}}/readme.txt HTTP/1.1
        Host: {{Hostname}}

    threads: 50
    payloads:
      pluginSlug: helpers/wordlists/wordpress-plugins.txt

    matchers-condition: and
    matchers:
      - type: status
        status:
          - 200

      - type: word
        words:
          - "== Description =="

    extractors:
      - type: regex
        part: body
        group: 1
        regex:
          - "===\\s(.*)\\s===" # extract the plugin name
          - "(?m)Stable tag: ([0-9.]+)" # extract the plugin version
# digest: 4a0a0047304502210095d73a8c3aa4c7a16915f2dbd8f9b4ca781d1f0505c9f129beee5c24385af63102203f99149428d7a4df3158c96b70b588f69b7f9eb80f144bcf4dd443f7b6b7835d:922c64590222798bb761d5b6d8e72950
WordPress detection templates 2021-04-20 00:51:49 +00:00			`id: wordpress-plugins-detect`
more updates 2021-10-10 01:13:30 +00:00
WordPress detection templates 2021-04-20 00:51:49 +00:00			`info:`
			`name: WordPress Plugins Detection`
			`author: 0xcrypto`
			`severity: info`
Added max request counter of each template 2023-04-28 08:11:21 +00:00			`metadata:`
			`max-request: 98135`
replaced fuzz tag to brute-force 2024-02-12 17:32:40 +00:00			`tags: fuzzing,brute-force,wordpress`
WordPress detection templates 2021-04-20 00:51:49 +00:00
Refactoring the directory structure based on protocols (#7137) * moving http templates * updated cves.json * moved network CVEs * updated scripts * updated workflows * updated requests to http * replaced network to tcp --------- Co-authored-by: sandeep <8293321+ehsandeep@users.noreply.github.com> 2023-04-27 04:28:59 +00:00			`http:`
Payloads positional update to keep the request format uniform 2021-08-22 18:09:33 +00:00			`- raw:`
WordPress detection templates 2021-04-20 00:51:49 +00:00			`- \|`
			`GET /wp-content/plugins/{{pluginSlug}}/readme.txt HTTP/1.1`
			`Host: {{Hostname}}`
minor updates 2021-04-20 08:43:28 +00:00
Update wordpress-plugins-detect.yaml to extract plugin name and version (#4290) * update wordpress-plugins-detect template to extract plugin name and version * fix yamllint errors * version extractor update Co-authored-by: sandeep <sandeep@projectdiscovery.io> 2022-05-05 12:23:16 +00:00			`threads: 50`
Payloads positional update to keep the request format uniform 2021-08-22 18:09:33 +00:00			`payloads:`
			`pluginSlug: helpers/wordlists/wordpress-plugins.txt`

minor updates 2021-04-20 08:43:28 +00:00			`matchers-condition: and`
WordPress detection templates 2021-04-20 00:51:49 +00:00			`matchers:`
			`- type: status`
			`status:`
			`- 200`
minor updates 2021-04-20 08:43:28 +00:00
			`- type: word`
			`words:`
			`- "== Description =="`
Update wordpress-plugins-detect.yaml to extract plugin name and version (#4290) * update wordpress-plugins-detect template to extract plugin name and version * fix yamllint errors * version extractor update Co-authored-by: sandeep <sandeep@projectdiscovery.io> 2022-05-05 12:23:16 +00:00
			`extractors:`
			`- type: regex`
			`part: body`
			`group: 1`
			`regex:`
			`- "===\\s(.*)\\s===" # extract the plugin name`
templateman update 2023-10-14 11:27:55 +00:00			`- "(?m)Stable tag: ([0-9.]+)" # extract the plugin version`
Auto Template Signing [Mon Feb 12 18:33:19 UTC 2024] :robot: 2024-02-12 18:33:19 +00:00			`# digest: 4a0a0047304502210095d73a8c3aa4c7a16915f2dbd8f9b4ca781d1f0505c9f129beee5c24385af63102203f99149428d7a4df3158c96b70b588f69b7f9eb80f144bcf4dd443f7b6b7835d:922c64590222798bb761d5b6d8e72950`