id: wordpress-workflow info: name: Wordpress Security Checks author: kiblyn11 & zomsop82 description: A simple workflow that runs all wordpress related nuclei templates on a given target. tags: workflow # Supported on Nuclei v2.2.0 (https://github.com/projectdiscovery/nuclei/releases/tag/v2.2.0) # Old workflows still remains valid, and will be working with all nuclei versions. workflows: - template: technologies/tech-detect.yaml matchers: - name: wordpress subtemplates: - template: cves/2019/CVE-2019-6112.yaml - template: cves/2019/CVE-2019-6715.yaml - template: cves/2019/CVE-2019-9978.yaml - template: cves/2019/CVE-2019-14205.yaml - template: cves/2019/CVE-2019-15858.yaml - template: cves/2019/CVE-2019-19985.yaml - template: cves/2019/CVE-2019-20141.yaml - template: cves/2020/CVE-2020-11738.yaml - template: cves/2020/CVE-2020-24312.yaml - template: cves/2020/CVE-2020-25213.yaml - template: vulnerabilities/wordpress/easy-wp-smtp-listing.yaml - template: vulnerabilities/wordpress/sassy-social-share.yaml - template: vulnerabilities/wordpress/w3c-total-cache-ssrf.yaml - template: vulnerabilities/wordpress/wordpress-accessible-wpconfig.yaml - template: vulnerabilities/wordpress/wordpress-db-backup.yaml - template: vulnerabilities/wordpress/wordpress-debug-log.yaml - template: vulnerabilities/wordpress/wordpress-directory-listing.yaml - template: vulnerabilities/wordpress/wordpress-emails-verification-for-woocommerce.yaml - template: vulnerabilities/wordpress/wordpress-emergency-script.yaml - template: vulnerabilities/wordpress/wordpress-installer-log.yaml - template: vulnerabilities/wordpress/wordpress-social-metrics-tracker.yaml - template: vulnerabilities/wordpress/wordpress-tmm-db-migrate.yaml - template: vulnerabilities/wordpress/wordpress-user-enumeration.yaml - template: vulnerabilities/wordpress/wordpress-wordfence-xss.yaml - template: vulnerabilities/wordpress/wordpress-wpcourses-info-disclosure.yaml - template: vulnerabilities/wordpress/wordpress-xmlrpc-listmethods.yaml - template: vulnerabilities/wordpress/wp-xmlrpc.yaml - template: vulnerabilities/wordpress/wordpress-zebra-form-xss.yaml - template: vulnerabilities/wordpress/wp-enabled-registration.yaml - template: vulnerabilities/wordpress/wordpress-affiliatewp-log.yaml - template: vulnerabilities/wordpress/wp-uploads-listing.yaml - template: vulnerabilities/wordpress/wp-license-file.yaml