URL: https://unesa.ac.id/ [172.67.75.79]
Started: Sat Dec 14 11:17:02 2024

Interesting Finding(s):

Headers
 | Interesting Entries:
 |  - Accept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
 |  - Critical-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
 |  - Cross-Origin-Embedder-Policy: require-corp
 |  - Cross-Origin-Opener-Policy: same-origin
 |  - Cross-Origin-Resource-Policy: same-origin
 |  - Origin-Agent-Cluster: ?1
 |  - Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
 |  - Referrer-Policy: same-origin
 |  - X-Content-Options: nosniff
 |  - cf-mitigated: challenge
 |  - cf-chl-out: B7WJz2hz2S60FtMMVwNUY4EGsJG/WFqWXJxwS+N9r7TBxc/A3WGp2f+1qS2XLXhPz4i1vwBEHqqkSZgngS55aXVBnYbNMsGg69lXrAsvdsJD2Fpo4Gq/OIOVo1HoVPHn13+ssvrnhr6jaJvJUlY5SA==$PN1x0LJFwu46JPljwqlanw==
 |  - Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sJPqRjyS%2FO9zM%2FcfZW6KeTw1vJuj00cdaC39CvXrsnpFq208Wd6sFZWtPumvBslLb4uXm3FmaZC4eS5diXY9kCCRa1YYA1BFgaKXneCv%2BVYnFEzjzieeuuudNZbU"}],"group":"cf-nel","max_age":604800}
 |  - NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
 |  - Server: cloudflare
 |  - CF-RAY: 8f1f80672a867d1c-EWR
 |  - alt-svc: h3=":443"; ma=86400
 |  - server-timing: cfL4;desc="?proto=TCP&rtt=1536&min_rtt=1467&rtt_var=599&sent=5&recv=6&lost=0&retrans=0&sent_bytes=3187&recv_bytes=844&delivery_rate=2961145&cwnd=249&unsent_bytes=0&cid=65763db9680f52b5&ts=20&x=0"
 | Found By: Headers (Passive Detection)
 | Confidence: 100%


Fingerprinting the version -: |================================================|
 The WordPress version could not be detected.

 The main theme could not be detected.

Enumerating Users (via Passive and Aggressive Methods)

 Brute Forcing Author IDs -: |=================================================|

 No Users Found.

 No WPScan API Token given, as a result vulnerability data has not been output.
 You can get a free API token with 25 daily requests by registering at https://wpscan.com/register

Finished: Sat Dec 14 11:17:55 2024
Requests Done: 761
Cached Requests: 8
Data Sent: 193.757 KB
Data Received: 1.882 MB
Memory used: 102.828 MB
Elapsed time: 00:00:53

Target

unesa.ac.id

Scan method

Enumerate Wordpress Users

Run command

wpscan --url https://unesa.ac.id/ --enumerate u --random-user-agent --force --max-scan-duration 60

Scan time

53s

Quick report

Order full scan ($19/one time)

Scan date

14 Dec 2024 11:17

Copy scan report

Download report

Remove scan result

$

Total scans

About 2 times