URL: https://www.salpaus.fi/ [2a01:4f9:4a:18ce::2] Started: Mon Feb 3 09:45:48 2025 Interesting Finding(s): Headers | Interesting Entries: | - Server: nginx | - X-TEC-API-VERSION: v1 | - X-TEC-API-ROOT: https://www.salpaus.fi/wp-json/tribe/events/v1/ | - X-TEC-API-ORIGIN: https://www.salpaus.fi | - X-Container: salpaus_3da7a4 | - X-Proxy-Cache: STALE P: A: N: H:0 O: S: | - X-Edge-Location: FI-P2 | - X-Powered-By: Seravo | - X-Seravo-Request-Id: 8fc1a842069d7268703e2ea378ad07c2 | Found By: Headers (Passive Detection) | Confidence: 100% robots.txt found: https://www.salpaus.fi/robots.txt | Interesting Entries: | - /wp-admin/ | - /wp-admin/admin-ajax.php | Found By: Robots Txt (Aggressive Detection) | Confidence: 100% This site seems to be a multisite | Found By: Direct Access (Aggressive Detection) | Confidence: 100% | Reference: http://codex.wordpress.org/Glossary#Multisite This site has 'Must Use Plugins': https://www.salpaus.fi/wp-content/mu-plugins/ | Found By: Direct Access (Aggressive Detection) | Confidence: 80% | Reference: http://codex.wordpress.org/Must_Use_Plugins The external WP-Cron seems to be enabled: https://www.salpaus.fi/wp-cron.php | Found By: Direct Access (Aggressive Detection) | Confidence: 60% | References: | - https://www.iplocation.net/defend-wordpress-from-ddos | - https://github.com/wpscanteam/wpscan/issues/1299 WordPress version 6.7.1 identified (Latest, released on 2024-11-21). | Found By: Emoji Settings (Passive Detection) | - https://www.salpaus.fi/, Match: 'wp-includes\/js\/wp-emoji-release.min.js?ver=6.7.1' | Confirmed By: Meta Generator (Passive Detection) | - https://www.salpaus.fi/, Match: 'WordPress 6.7.1' WordPress theme in use: leiden-master | Location: https://www.salpaus.fi/wp-content/themes/leiden-master/ | Style URL: https://www.salpaus.fi/wp-content/themes/leiden-master/style.css?ver=1732686946 | Style Name: Leiden | Description: WCAG 2.0 AA accessible child theme created for the Genesis Framework.... | Author: Rian Rietveld | Author URI: http://www.genesis-accessible.org/ | | Found By: Css Style In Homepage (Passive Detection) | Confirmed By: Css Style In 404 Page (Passive Detection) | | Version: 1.0 (80% confidence) | Found By: Style (Passive Detection) | - https://www.salpaus.fi/wp-content/themes/leiden-master/style.css?ver=1732686946, Match: 'Version: 1.0' Enumerating Users (via Passive and Aggressive Methods) Brute Forcing Author IDs -: |=================================================| User(s) Identified: marianne | Found By: Oembed API - Author URL (Aggressive Detection) | - https://www.salpaus.fi/wp-json/oembed/1.0/embed?url=https://www.salpaus.fi/&format=json kaisatormanen | Found By: Rss Generator (Aggressive Detection) niinaleppala | Found By: Rss Generator (Aggressive Detection) Timo Korppi | Found By: Rss Generator (Aggressive Detection) leena | Found By: Author Id Brute Forcing - Author Pattern (Aggressive Detection) taijapitkanen | Found By: Author Id Brute Forcing - Author Pattern (Aggressive Detection) mervihyyrynen | Found By: Author Id Brute Forcing - Author Pattern (Aggressive Detection) No WPScan API Token given, as a result vulnerability data has not been output. You can get a free API token with 25 daily requests by registering at https://wpscan.com/register Finished: Mon Feb 3 09:46:37 2025 Requests Done: 61 Cached Requests: 7 Data Sent: 17.476 KB Data Received: 1.903 MB Memory used: 196.828 MB Elapsed time: 00:00:48