nuclei-templates/http/exposed-panels/wordpress-login.yaml

id: wordpress-login

info:
  name: WordPress Login Panel - Detect
  author: its0x08
  severity: info
  description: WordPress login panel was detected.
  classification:
    cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
    cwe-id: CWE-200
    cpe: cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*
  metadata:
    max-request: 1
    vendor: wordpress
    product: wordpress
    shodan-query:
      - http.component:"wordpress"
      - cpe:"cpe:2.3:a:wordpress:wordpress"
  tags: panel,wordpress

http:
  - method: GET
    path:
      - "{{BaseURL}}/wp-login.php"

    matchers:
      - type: word
        words:
          - "WordPress</title>"
          - "Log In</title>"
          - '/wp-login.php?action=lostpassword">Lost your password?</a>'
          - '<form name="loginform" id="loginform" action="{{BaseURL}}/wp-login.php"
            method="post">'
        condition: or
# digest: 4a0a00473045022100ab62a902eaed0e8a1a38b6dc361105dc173ddd28f6ef2e7302697f9f5ac809c802206a8a1c2b3e77da067d0ceb25ee02082b8dddbd3b1c3605d609a5aec153d728f3:922c64590222798bb761d5b6d8e72950