Membership level: Free member
Enumerate Wordpress Users (wpscan --url https://3sixtysecurity.sytes.net/ --enumerate u --random-user-agent --force --max-scan-duration 60)
URL: https://3sixtysecurity.sytes.net/ [86.11.49.17]
Started: Fri Jul 18 14:23:48 2025

Interesting Finding(s):

Headers
 | Interesting Entries:
 |  - Alt-Svc: h3=":443"; ma=2592000
 |  - Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' https://cdnjs.cloudflare.com https://kit.fontawesome.com https://cdn.jsdelivr.net https://maps.googleapis.com https://maps.gstatic.com https://www.google.com https://www.gstatic.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://cdnjs.cloudflare.com https://maps.googleapis.com https://www.gstatic.com; font-src 'self' https://fonts.gstatic.com https://cdnjs.cloudflare.com https://maps.gstatic.com; img-src 'self' data: blob: https://maps.gstatic.com https://maps.googleapis.com https://www.google.com https://www.gstatic.com; connect-src 'self' https://maps.googleapis.com https://maps.gstatic.com https://www.google.com https://www.gstatic.com https://api64.ipify.org; frame-src https://www.google.com https://www.gstatic.com https://maps.google.com; child-src https://www.google.com https://www.gstatic.com https://maps.google.com; object-src 'none'; base-uri 'self';
 |  - Referrer-Policy: strict-origin-when-cross-origin
 |  - Server: Werkzeug/3.1.3 Python/3.12.4, Apache/2.0.46 (Red Hat)
 |  - Via: 1.1 Caddy
 |  - X-Admin-Panel: /admin/login.php
 |  - X-Backup-Files: config.php.bak, database.sql.old
 |  - X-Control-Panel: cPanel/WHM
 |  - X-Database: MySQL/4.0.27
 |  - X-Db-Server: localhost:3306
 |  - X-Directory-Listing: Enabled
 |  - X-Display-Errors: On
 |  - X-File-Permissions: 777
 |  - X-Forwarded-Server: cpanel-shared-hosting
 |  - X-Generator: osCommerce/2.2
 |  - X-Install-Date: 2005-03-15T10:30:00Z
 |  - X-Kernel: Linux 2.4.18-3
 |  - X-Last-Backup: 2005-06-01T09:15:00Z
 |  - X-Last-Reboot: 2005-02-28T12:00:00Z
 |  - X-Last-Update: 2005-04-12T14:22:00Z
 |  - X-Log-Errors: Off
 |  - X-Magic-Quotes: Off
 |  - X-Manager-Url: /manager/html
 |  - X-Mod-Security: 1.8.7
 |  - X-Operating-System: Red Hat Linux 7.3
 |  - X-Php-Expose: On
 |  - X-Php-Script: /index.php
 |  - X-Phpmyadmin: /phpmyadmin/
 |  - X-Powered-By: PHP/4.4.9
 |  - X-Powered-By-Cpanel: 11.25.0-STABLE
 |  - X-Register-Globals: On
 |  - X-Safe-Mode: Off
 |  - X-Ssl-Cipher: RC4-MD5
 |  - X-Ssl-Protocol: SSLv3
 |  - X-Uptime: 1212 days
 | Found By: Headers (Passive Detection)
 | Confidence: 100%


Fingerprinting the version -: |================================================|
 The WordPress version could not be detected.

 The main theme could not be detected.

Enumerating Users (via Passive and Aggressive Methods)

 Brute Forcing Author IDs -: |=================================================|

 No Users Found.

 No WPScan API Token given, as a result vulnerability data has not been output.
 You can get a free API token with 25 daily requests by registering at https://wpscan.com/register

Finished: Fri Jul 18 14:24:42 2025
Requests Done: 771
Cached Requests: 8
Data Sent: 241.952 KB
Data Received: 2.107 MB
Memory used: 158.855 MB
Elapsed time: 00:00:54
Color Scheme
Target
3sixtysecurity.sytes.net
Scan method
Enumerate Wordpress Users
Run command
wpscan --url https://3sixtysecurity.sytes.net/ --enumerate u --random-user-agent --force --max-scan-duration 60
Scan time
54s
Quick report
Order full scan ($19/one time)
Scan date
18 Jul 2025 17:24
Copy scan report
Download report
Remove scan result
$
Some firewalls blocks vulnerability scanners. For get true positive results add wpscan.online IP addresses (208.76.253.232-208.76.253.239 or CIDR 208.76.253.232/29 ) to the whitelist
[scan_method]
Visibility:
Scan method:
Max Scan duration: