daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Update wp-registration-enabled.yaml

patch-1
Prince Chaddha 2022-06-22 09:24:00 +05:30 committed by GitHub
parent 6d97125652
commit 4140e20d6f
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 4 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
misconfiguration/wp-registration-enabled.yaml
View File

@ -8,7 +8,10 @@ info:
Your WordPress site is currently configured so that anyone can register as a user. If you are not using this functionality, it's recommended to disable user registration as it caused some security issues in the past and is increasing the attack surface.
remediation: |
Disable user registration if not needed. To disable user registration, log in as an administrator and go to Settings -> General and uncheck "Anyone can register".
reference: https://www.acunetix.com/vulnerabilities/web/wordpress-user-registration-enabled/
reference:
- https://www.acunetix.com/vulnerabilities/web/wordpress-user-registration-enabled/
metadata:
verified: true
tags: wordpress,wp,misconfig
requests: