sync/SecLists
1
0
Fork 0
mirror of https://github.com/danielmiessler/SecLists.git synced 2025-05-05 16:07:42 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions 2

Add /wp-json/wp/v2/users

Browse source 
Add /wp-json/wp/v2/users WP REST API endpoint which exposes sensitive information - list of all WP users, which could be used for brute-force attacks.
This commit is contained in:
Alexander Bridges 2018-10-31 23:27:00 +02:00 committed by GitHub
parent dbfa5e2b1e
commit a53dae2a76
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
1 changed files with 1 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

1
Discovery/Web-Content/quickhits.txt
View file

@ -2330,6 +2330,7 @@
/wp-content/plugins/disqus-comment-system/disqus.php
/wp-content/plugins/google-sitemap-generator/sitemap-core.php
/wp-content/uploads/
/wp-json/wp/v2/users
/wp-register.php
/wp.php
/wp.rar/