Navigation X
ALERT
Click here to register with a few steps and explore all our cool stuff we have to offer!

cracked.io | Best Forum Around | Free Premium Accounts




 34007

[OPEN-SOURCE] Wordpress Bruter. [PYTHON]

by Kushd - 14 November, 2019 - 01:31 AM
This post is by a banned member (HAP) - Unhide
HAP  
Registered
80
Posts
11
Threads
4 Years of service
#9
06 December, 2019 - 09:42 PM (This post was last modified: 06 December, 2019 - 10:05 PM by HAP.)
Thank you for sharing. Python script is always helpful!
python3 xmlrpcbruteforce.py http://192.168.1.5:8080/wp/xmlrpc.php t.xt writer

---------------Examining Target--------------------

Target is NOT vulnerable for Brute Forcing.
wp.GetUsersBlogs is not enabled.
Please report any incorrect results on GitHuB or DM on Twitter.

Using same latest version of wordpress. Same version installed in a hosting, it output the site is vulnerable without www. When i tried with https://site.com, it was not able to find the correct password. The working password was in the text file. Test again man :) .
 
This post is by a banned member (eLHaMaD) - Unhide
This post is by a banned member (notorius) - Unhide
notorius  
Registered
41
Posts
1
Threads
4 Years of service
Warned #11
16 December, 2019 - 10:20 PM
dankeee
This post is by a banned member (goodlucktome123) - Unhide
goodlucktome123  
Registered
23
Posts
0
Threads
4 Years of service
#12
17 December, 2019 - 07:30 PM
Nice!
This post is by a banned member (Kushd) - Unhide
Kushd  
Infinity
167
Posts
47
Threads
4 Years of service
#13
OP 17 December, 2019 - 08:09 PM (This post was last modified: 17 December, 2019 - 08:09 PM by Kushd.)
(06 December, 2019 - 09:42 PM)Cryna Wrote: Show More
Thank you for sharing. Python script is always helpful!
python3 xmlrpcbruteforce.py http://192.168.1.5:8080/wp/xmlrpc.php t.xt writer

---------------Examining Target--------------------

Target is NOT vulnerable for Brute Forcing.
wp.GetUsersBlogs is not enabled.
Please report any incorrect results on GitHuB or DM on Twitter.

Using same latest version of wordpress. Same version installed in a hosting, it output the site is vulnerable without www. When i tried with https://site.com, it was not able to find the correct password. The working password was in the text file. Test again man :) .

Hi I updated with a newer version, hope it helps, please remember this is not my code and to take any issues up with the devs. I had tested a month ago and was fine.
 
This post is by a banned member (Denmark) - Unhide
Denmark  
Coder
1.171
Posts
47
Threads
4 Years of service
#14
17 December, 2019 - 10:53 PM
looks nice <3
[Image: sig.jpg]

I WILL IGNORE YOU IF YOU PM ME WITH UNDESCRIPTIVE SUBJECTS LIKE "hello"
[ Always confirm via PM before dealing with me. ]
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Staff || Anti-Leeching || Upgrade || Forum Rules || Achievements
This post is by a banned member (bK1337) - Unhide
bK1337  
Registered
10
Posts
0
Threads
4 Years of service
#15
18 December, 2019 - 04:40 AM
(14 November, 2019 - 01:31 AM)Kushd Wrote: Show More
Firstly not my code.

HOPE MIGHT STILL WORKS THIS CVE ON WORPRESS SITES
This post is by a banned member (Zennixze) - Unhide
Thread Closed 

Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
 or
Sign in
Already have an account? Sign in here.


Forum Jump:


Users browsing this thread: 2 Guest(s)

About Cracked.io

Cracked.io is a community forum that suits basically everyone. We provide cracking tutorials, tools, leaks, marketplace and much more stuff! You can also learn many things here, meet new friends and have a lot of fun!
If you would like to contact us, you can send our staff team a message.

Navigation

Extras

Help

Account