Professional Documents
Culture Documents
wps_scan
wps_scan
__ _______ _____
\ \ / / __ \ / ____|
\ \ /\ / /| |__) | (___ ___ __ _ _ __ ®
\ \/ \/ / | ___/ \___ \ / __|/ _` | '_ \
\ /\ / | | ____) | (__| (_| | | | |
\/ \/ |_| |_____/ \___|\__,_|_| |_|
Interesting Finding(s):
#[32m[+]#[0m Headers
| Interesting Entry: Server: Apache/2.4.41 (Ubuntu)
| Found By: Headers (Passive Detection)
| Confidence: 100%
#[32m[+]#[0m elementor
| Location: http://trilocor.local/wp-content/plugins/elementor/
| Last Updated: 2024-04-30T12:32:00.000Z
| #[33m[!]#[0m The version is out of date, the latest version is 3.21.4
|
| Found By: Known Locations (Aggressive Detection)
| - http://trilocor.local/wp-content/plugins/elementor/, status: 403
|
| #[31m[!]#[0m 10 vulnerabilities identified:
|
| #[31m[!]#[0m Title: Elementor < 3.5.6 - DOM Reflected Cross-Site Scripting
| Fixed in: 3.5.6
| References:
| - https://wpscan.com/vulnerability/9758570b-4729-4eef-ad52-b6e922f536d6
| - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-29455
| - https://rotem-bar.com/hacking-65-million-websites-greater-cve-2022-29455-
elementor
|
| #[31m[!]#[0m Title: Elementor Website Builder < 3.12.2 - Admin+ SQLi
| Fixed in: 3.12.2
| References:
| - https://wpscan.com/vulnerability/a875836d-77f4-4306-b275-2b60efff1493
| - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0329
|
| #[31m[!]#[0m Title: Elementor Website Builder < 3.13.2 - Missing Authorization
| Fixed in: 3.13.2
| Reference: https://wpscan.com/vulnerability/0b68091c-6a05-4f81-a718-
6ec139df2e96
|
| #[31m[!]#[0m Title: Elementor < 3.5.5 - Iframe Injection
| Fixed in: 3.5.5
| References:
| - https://wpscan.com/vulnerability/8273357e-f9e1-44bc-8082-8faab838eda7
| - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4953
| -
https://github.com/elementor/elementor/commit/292fc49e0f979bd52d838f0326d1faaebfa59
f5e
|
| #[31m[!]#[0m Title: Elementor Website Builder < 3.16.5 - Authenticated
(Contributor+) Stored Cross-Site Scripting via get_inline_svg()
| Fixed in: 3.16.5
| References:
| - https://wpscan.com/vulnerability/62b53acf-6551-4ea7-8727-039a3c9ba7ce
| - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-47505
| - https://www.wordfence.com/threat-intel/vulnerabilities/id/b44ef21f-464e-
487a-ba5a-fe889e4c488c
|
| #[31m[!]#[0m Title: Elementor Website Builder < 3.16.5 - Missing Authorization
to Arbitrary Attachment Read
| Fixed in: 3.16.5
| References:
| - https://wpscan.com/vulnerability/e60f0f7e-4c3b-4107-803a-8e03526859ed
| - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-47504
| - https://www.wordfence.com/threat-intel/vulnerabilities/id/c873c76a-144e-
4945-8fa2-c9ffe0e3c061
|
| #[31m[!]#[0m Title: Elementor < 3.18.2 - Contributor+ Arbitrary File Upload to
RCE via Template Import
| Fixed in: 3.18.2
| References:
| - https://wpscan.com/vulnerability/a6b3b14c-f06b-4506-9b88-854f155ebca9
| - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-48777
| - https://www.wordfence.com/threat-intel/vulnerabilities/id/5b6d0a38-ac28-
41c9-9da1-b30b3657b463
|
| #[31m[!]#[0m Title: Elementor < 3.19.1 - Authenticated(Contributor+) Arbitrary
File Deletion and PHAR Deserialization
| Fixed in: 3.19.1
| References:
| - https://wpscan.com/vulnerability/4d7dfcc6-8c32-4e0d-b3bb-7e2685916e2b
| - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-24934
| - https://www.wordfence.com/threat-intel/vulnerabilities/id/4915b769-9499-
40ac-835e-279e3a910558
|
| #[31m[!]#[0m Title: Elementor Website Builder – More than Just a Page Builder <
3.19.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via get_image_alt
| Fixed in: 3.19.0
| References:
| - https://wpscan.com/vulnerability/57af46d9-9a26-4085-9829-e0add7893332
| - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0506
| - https://www.wordfence.com/threat-intel/vulnerabilities/id/4473d3f6-e324-
40f5-b92b-167f76b17332
|
| #[31m[!]#[0m Title: Elementor Website Builder < 3.20.3 - Contributor+ DOM Stored
XSS
| Fixed in: 3.20.3
| References:
| - https://wpscan.com/vulnerability/22e8d017-79f5-40c8-8a2c-e0ee42ba80c8
| - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-2117
| - https://www.wordfence.com/threat-intel/vulnerabilities/id/c8d7448a-b8a6-
4b0b-92df-a15272fc56bf
|
| Version: 3.5.3 (100% confidence)
| Found By: Javascript Comment (Aggressive Detection)
| - http://trilocor.local/wp-content/plugins/elementor/assets/js/admin-
feedback.js, Match: 'elementor - v3.5.3'
| Confirmed By: Style Comment (Aggressive Detection)
| - http://trilocor.local/wp-content/plugins/elementor/assets/css/admin.min.css,
Match: 'elementor - v3.5.3'
#[32m[+]#[0m astra
| Location: http://trilocor.local/wp-content/themes/astra/
| Latest Version: 4.6.13
| Last Updated: 2024-04-25T00:00:00.000Z
| Style URL: http://trilocor.local/wp-content/themes/astra/style.css
|
| Found By: Urls In Homepage (Passive Detection)
|
| #[31m[!]#[0m 2 vulnerabilities identified:
|
| #[31m[!]#[0m Title: Astra < 4.6.9 - Contributor+ Stored XSS
| Fixed in: 4.6.9
| References:
| - https://wpscan.com/vulnerability/62871f3a-c9a8-49bb-b67b-143af3caa986
| - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-2347
| - https://www.wordfence.com/threat-intel/vulnerabilities/id/ed914e67-4cf7-
49b1-96be-ed8c604e6dce
|
| #[31m[!]#[0m Title: Astra < 4.6.5 - Editor+ Stored XSS via Theme Header/Footer
| Fixed in: 4.6.5
| References:
| - https://wpscan.com/vulnerability/30fd2612-91f6-4c1b-8d0c-fa607edf4717
| - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-29768
| - https://patchstack.com/database/vulnerability/astra/wordpress-astra-
theme-4-6-4-cross-site-scripting-xss-vulnerability
|
| The version could not be determined.
Checking DB Exports -: |
===================================================================================
==============================================|