URL: https://tafnied.com/ [2606:4700:3036::ac43:97be] Started: Thu Dec 4 06:53:56 2025 Interesting Finding(s): Headers | Interesting Entries: | - Server: cloudflare | - Server-Timing: wp-load-alloptions-query;dur=3.14, wp-before-template;dur=263.09 | - Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=QZ4jRbiKOvLuyGczC5jAl6kMiq632VcntRTOEFPZ8Iybe2eIQCMarl%2B28Vkw2zVbjvkK5%2FeIQt74Cip4bEjbDlJ97f5CerctXejB"}]} | - Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} | - cf-cache-status: DYNAMIC | - CF-RAY: 9a8c229acaa44383-LAX | - alt-svc: h3=":443"; ma=86400 | Found By: Headers (Passive Detection) | Confidence: 100% robots.txt found: https://tafnied.com/robots.txt | Interesting Entries: | - /wp-admin/ | - /wp-admin/admin-ajax.php | Found By: Robots Txt (Aggressive Detection) | Confidence: 100% XML-RPC seems to be enabled: https://tafnied.com/xmlrpc.php | Found By: Link Tag (Passive Detection) | Confidence: 100% | Confirmed By: Direct Access (Aggressive Detection), 100% confidence | References: | - http://codex.wordpress.org/XML-RPC_Pingback_API | - https://www.rapid7.com/db/modules/auxiliary/scanner/http/wordpress_ghost_scanner/ | - https://www.rapid7.com/db/modules/auxiliary/dos/http/wordpress_xmlrpc_dos/ | - https://www.rapid7.com/db/modules/auxiliary/scanner/http/wordpress_xmlrpc_login/ | - https://www.rapid7.com/db/modules/auxiliary/scanner/http/wordpress_pingback_access/ This site has 'Must Use Plugins': https://tafnied.com/wp-content/mu-plugins/ | Found By: Direct Access (Aggressive Detection) | Confidence: 80% | Reference: http://codex.wordpress.org/Must_Use_Plugins Upload directory has listing enabled: https://tafnied.com/wp-content/uploads/ | Found By: Direct Access (Aggressive Detection) | Confidence: 100% The external WP-Cron seems to be enabled: https://tafnied.com/wp-cron.php | Found By: Direct Access (Aggressive Detection) | Confidence: 60% | References: | - https://www.iplocation.net/defend-wordpress-from-ddos | - https://github.com/wpscanteam/wpscan/issues/1299 WordPress version 6.5.3 identified (Insecure, released on 2024-05-07). | Found By: Rss Generator (Passive Detection) | - https://tafnied.com/feed/, https://wordpress.org/?v=6.5.3 | Confirmed By: Meta Generator (Passive Detection) | - https://tafnied.com/, Match: 'WordPress 6.5.3' WordPress theme in use: tafnied | Location: https://tafnied.com/wp-content/themes/tafnied/ | Readme: https://tafnied.com/wp-content/themes/tafnied/readme.txt | Style URL: https://tafnied.com/wp-content/themes/tafnied/style.css | Style Name: JNews | Style URI: http://themeforest.net | Description: JNews... | Author: Jegtheme | Author URI: http://jegtheme.com/ | | Found By: Css Style In Homepage (Passive Detection) | Confirmed By: Css Style In 404 Page (Passive Detection) | | Version: 8.0.3 (80% confidence) | Found By: Style (Passive Detection) | - https://tafnied.com/wp-content/themes/tafnied/style.css, Match: 'Version: 8.0.3' Enumerating Users (via Passive and Aggressive Methods) Brute Forcing Author IDs -: |======================== No WPScan API Token given, as a result vulnerability data has not been output. You can get a free API token with 25 daily requests by registering at https://wpscan.com/register Finished: Thu Dec 4 06:54:52 2025 Requests Done: 57 Cached Requests: 8 Data Sent: 16.354 KB Data Received: 38.565 MB Memory used: 216.734 MB Elapsed time: 00:00:56 Scan Aborted: Max Scan Duration Reached