URL: https://casademadera.org/ [91.237.124.26] Started: Sat May 17 18:48:10 2025 Interesting Finding(s): Headers | Interesting Entries: | - x-powered-by: PHP/7.4.33 | - x-dns-prefetch-control: on | - x-litespeed-cache: hit | - server: LiteSpeed | - alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46" | Found By: Headers (Passive Detection) | Confidence: 100% robots.txt found: https://casademadera.org/robots.txt | Interesting Entries: | - /wp-admin/ | - /wp-admin/admin-ajax.php | Found By: Robots Txt (Aggressive Detection) | Confidence: 100% WordPress readme found: https://casademadera.org/readme.html | Found By: Direct Access (Aggressive Detection) | Confidence: 100% The external WP-Cron seems to be enabled: https://casademadera.org/wp-cron.php | Found By: Direct Access (Aggressive Detection) | Confidence: 60% | References: | - https://www.iplocation.net/defend-wordpress-from-ddos | - https://github.com/wpscanteam/wpscan/issues/1299 WordPress version 6.8.1 identified (Latest, released on 2025-04-30). | Found By: Rss Generator (Passive Detection) | - https://casademadera.org/feed/, https://wordpress.org/?v=6.8.1 | - https://casademadera.org/comments/feed/, https://wordpress.org/?v=6.8.1 The main theme could not be detected. Enumerating Users (via Passive and Aggressive Methods) Brute Forcing Author IDs -: |=================================================| User(s) Identified: admin | Found By: Rss Generator (Passive Detection) | Confirmed By: | Wp Json Api (Aggressive Detection) | - https://casademadera.org/wp-json/wp/v2/users/?per_page=100&page=1 | Oembed API - Author URL (Aggressive Detection) | - https://casademadera.org/wp-json/oembed/1.0/embed?url=https://casademadera.org/&format=json | Rss Generator (Aggressive Detection) | Author Sitemap (Aggressive Detection) | - https://casademadera.org/wp-sitemap-users-1.xml | Author Id Brute Forcing - Author Pattern (Aggressive Detection) No WPScan API Token given, as a result vulnerability data has not been output. You can get a free API token with 25 daily requests by registering at https://wpscan.com/register Finished: Sat May 17 18:48:25 2025 Requests Done: 47 Cached Requests: 8 Data Sent: 14.498 KB Data Received: 678.884 KB Memory used: 141.117 MB Elapsed time: 00:00:14