From f99ab01416dffc21b4f8d148b61496b7c2b6a8f4 Mon Sep 17 00:00:00 2001
From: mastercho <souljanboy@gmail.com>
Date: Mon, 8 Jan 2024 04:42:29 +0200
Subject: [PATCH] added match key for _wpeprivate/config.json according
 https://twitter.com/WllGates/status/1712965022341632245

---
 .../wordpress/wordpress-accessible-wpconfig.yaml          | 8 +++++++-
 1 file changed, 7 insertions(+), 1 deletion(-)

diff --git a/http/vulnerabilities/wordpress/wordpress-accessible-wpconfig.yaml b/http/vulnerabilities/wordpress/wordpress-accessible-wpconfig.yaml
index 0f27ba5f37..8287201b31 100644
--- a/http/vulnerabilities/wordpress/wordpress-accessible-wpconfig.yaml
+++ b/http/vulnerabilities/wordpress/wordpress-accessible-wpconfig.yaml
@@ -2,7 +2,7 @@ id: wordpress-accessible-wpconfig
 
 info:
   name: WordPress wp-config Detection
-  author: Kiblyn11,zomsop82,madrobot,geeknik,daffainfo,r12w4n,tess,0xpugazh
+  author: Kiblyn11,zomsop82,madrobot,geeknik,daffainfo,r12w4n,tess,0xpugazh,mastercho
   severity: medium
   description: WordPress `wp-config` was discovered. This file is remotely accessible and its content available for reading.
   classification:
@@ -65,4 +65,10 @@ http:
           - "PASSWORD"
         condition: and
 
+      - type: word
+        part: body
+        words:
+          - "DB_USERNAME"
+          - "DB_PASSWORD"
+        condition: and
 # digest: 4b0a00483046022100f88f704a2270d5d54e06c42cfc035f9104301d9940f38771a55b0e4953384865022100e7453447cdf3813db80dc184271aa25b98a984fba38ddd9d7d4da1dd49575379:922c64590222798bb761d5b6d8e72950