URL: https://www.bluecirclehealth.org/ [141.193.213.11] Started: Mon Dec 9 16:26:10 2024 Interesting Finding(s): Headers | Interesting Entries: | - X-Powered-By: WP Engine | - X-Cacheable: SHORT | - X-Cache-Group: normal | - CF-Cache-Status: DYNAMIC | - Server: cloudflare | - CF-RAY: 8ef8125adbc44249-EWR | - alt-svc: h3=":443"; ma=86400 | Found By: Headers (Passive Detection) | Confidence: 100% robots.txt found: https://www.bluecirclehealth.org/robots.txt | Found By: Robots Txt (Aggressive Detection) | Confidence: 100% XML-RPC seems to be enabled: https://www.bluecirclehealth.org/xmlrpc.php | Found By: Direct Access (Aggressive Detection) | Confidence: 100% | References: | - http://codex.wordpress.org/XML-RPC_Pingback_API | - https://www.rapid7.com/db/modules/auxiliary/scanner/http/wordpress_ghost_scanner/ | - https://www.rapid7.com/db/modules/auxiliary/dos/http/wordpress_xmlrpc_dos/ | - https://www.rapid7.com/db/modules/auxiliary/scanner/http/wordpress_xmlrpc_login/ | - https://www.rapid7.com/db/modules/auxiliary/scanner/http/wordpress_pingback_access/ This site has 'Must Use Plugins': https://www.bluecirclehealth.org/wp-content/mu-plugins/ | Found By: Direct Access (Aggressive Detection) | Confidence: 80% | Reference: http://codex.wordpress.org/Must_Use_Plugins The external WP-Cron seems to be enabled: https://www.bluecirclehealth.org/wp-cron.php | Found By: Direct Access (Aggressive Detection) | Confidence: 60% | References: | - https://www.iplocation.net/defend-wordpress-from-ddos | - https://github.com/wpscanteam/wpscan/issues/1299 Fingerprinting the version -: |=============================================== No WPScan API Token given, as a result vulnerability data has not been output. You can get a free API token with 25 daily requests by registering at https://wpscan.com/register Finished: Mon Dec 9 16:27:08 2024 Requests Done: 1297 Cached Requests: 5 Data Sent: 426.037 KB Data Received: 29.649 MB Memory used: 176.641 MB Elapsed time: 00:00:57 Scan Aborted: Max Scan Duration Reached