Big Development Website with Word Press CMS and PHP where you would not expect these wrong settings, and weaknesses.
Outdated: WordPress Version
4.8.9
Reputation Check
PASSED
Google Safe Browse:OK
Spamhaus Check:OK
Abuse CC:OK
Dshield Blocklist:OK
Cisco Talos Blacklist:OK
Web Server:
nginx
X-Powered-By:
None
IP Address:
-151.139.245.5
Hosting Provider:
StackPath LLC
Shared Hosting:
75 sites found on -151.139.245.5 see:
https://www.shodan.io/host/151.139.245.5Retire JS found:
bootstrap 3.3.4 Found in
https://www.agnisys.com/wp-content/plugins/wp-ajax-login-and-register/public/js/bootstrap.js?ver=3.3.4Vulnerability info:
High 28236 XSS in data-template, data-content and data-title properties of tooltip/popover CVE-2019-8331 1
Medium 20184 XSS in data-target property of scrollspy CVE-2018-14041 1
Medium 20184 XSS in collapse data-parent attribute CVE-2018-14040
Medium 20184 XSS in data-container property of tooltip CVE-2018-14042
jquery-ui-dialog 1.11.4 Found in
https://www.agnisys.com/wp-includes/js/jquery/ui/dialog.min.js?ver=1.11.4Vulnerability info:
High CVE-2016-7103 281 XSS Vulnerability on closeText option
jquery 1.12.4 Found in
https://www.agnisys.com/wp-includes/js/jquery/jquery.js?ver=1.12.4Vulnerability info:
Medium 2432 3rd party CORS request may execute CVE-2015-9251
Medium CVE-2015-9251 11974 parseHTML() executes scripts in event handlers
Medium CVE-2019-11358 jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution
Directory Indexing
In the test an attempt was made to list the directory contents of the uploads and plugins folders to determine if Directory Indexing is enabled. This is a common information leakage vulnerability that can reveal sensitive information regarding your site configuration or content.
/wp-content/uploads/ enabled ! should be disabled.
/wp-content/plugins/ disabled
Directory indexing was tested on the /wp-content/uploads/ and /wp-content/plugins/ directores. Note that other directories may have this web server feature enabled, so ensure you check other folders in your installation. It is good practice to ensure directory indexing is disabled for your full WordPress installation either through the web server configuration
Also see:
https://urlscan.io/result/7930756d-c321-4196-9034-ce20cb2f500fpolonus (volunteer 3rd party cold recon website security analyst and website error-hunter)