URL: https://unesa.ac.id/ [172.67.75.79]
Started: Sat Dec 14 11:20:24 2024

Interesting Finding(s):

Headers
 | Interesting Entries:
 |  - Accept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
 |  - Critical-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
 |  - Cross-Origin-Embedder-Policy: require-corp
 |  - Cross-Origin-Opener-Policy: same-origin
 |  - Cross-Origin-Resource-Policy: same-origin
 |  - Origin-Agent-Cluster: ?1
 |  - Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
 |  - Referrer-Policy: same-origin
 |  - X-Content-Options: nosniff
 |  - cf-mitigated: challenge
 |  - cf-chl-out: iH9456CBLY+0v0IPOG88j+ikyiGBsqMczU4bTO6bgBXqd7bWx9+4QE7i3ZlSwuvqNl6aeWlMSs2x4BXXVUTHE71H8opL3KTexpCxhLVgdrkAmly8xWfGuNi7KTw0qcsmNbcwvEUVh5TSX9foQQrjWw==$LRhiIovuQ/0qf2sQVOnkzg==
 |  - Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LwN%2F9Hy9EdGW%2Fkn7Ep%2BMCZef4YO3ZSqlBy1Bu4OSZaWEA4UmtzGfrmUwLf1FrEiulMsrDB3fMrnT1Ok6mPJpZIy%2Bpl4HsE8gFHq2D%2BFWnKOZmnpHIE1hGDVk0o20"}],"group":"cf-nel","max_age":604800}
 |  - NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
 |  - Server: cloudflare
 |  - CF-RAY: 8f1f855c2b624393-EWR
 |  - alt-svc: h3=":443"; ma=86400
 |  - server-timing: cfL4;desc="?proto=TCP&rtt=1608&min_rtt=1594&rtt_var=607&sent=5&recv=6&lost=0&retrans=0&sent_bytes=3188&recv_bytes=813&delivery_rate=2725219&cwnd=243&unsent_bytes=0&cid=f20ba4d3b321e972&ts=22&x=0"
 | Found By: Headers (Passive Detection)
 | Confidence: 100%


Fingerprinting the version -: |================================================|
 The WordPress version could not be detected.

 The main theme could not be detected.

Enumerating Users (via Passive and Aggressive Methods)

 Brute Forcing Author IDs -: |=================================================|

 No Users Found.

 No WPScan API Token given, as a result vulnerability data has not been output.
 You can get a free API token with 25 daily requests by registering at https://wpscan.com/register

Finished: Sat Dec 14 11:21:17 2024
Requests Done: 761
Cached Requests: 8
Data Sent: 170.719 KB
Data Received: 1.877 MB
Memory used: 102.77 MB
Elapsed time: 00:00:52

Target

unesa.ac.id

Scan method

Enumerate Wordpress Users

Run command

wpscan --url https://unesa.ac.id/ --enumerate u --random-user-agent --force --max-scan-duration 60

Scan time

52s

Quick report

Order full scan ($19/one time)

Scan date

14 Dec 2024 11:21

Copy scan report

Download report

Remove scan result

$

Total scans

About 2 times