URL: https://app.rzxcloud.com/ [2606:4700:3035::6815:12ab]
Started: Mon Mar 9 11:07:13 2026
Interesting Finding(s):
Headers
| Interesting Entries:
| - Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
| - Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=2v%2FiWF7zW%2B5fGeIx%2BXmeI3VflQOa6YSSSw0xtHVdLTJCX46GXaqEzHSvt%2Fwvew4q6gJLH8jGPB35NS1u7MVKA9crY5etvl8%2BjBy0EIsdHCg%3D"}]}
| - Server: cloudflare
| - cf-cache-status: DYNAMIC
| - CF-RAY: 9d9c046f5da4f7b3-LAX
| - alt-svc: h3=":443"; ma=86400
| Found By: Headers (Passive Detection)
| Confidence: 100%
This site seems to be a multisite
| Found By: Direct Access (Aggressive Detection)
| Confidence: 100%
| Reference: http://codex.wordpress.org/Glossary#Multisite
The external WP-Cron seems to be enabled: https://app.rzxcloud.com/wp-cron.php
| Found By: Direct Access (Aggressive Detection)
| Confidence: 60%
| References:
| - https://www.iplocation.net/defend-wordpress-from-ddos
| - https://github.com/wpscanteam/wpscan/issues/1299
Fingerprinting the version -: |================================================|
The WordPress version could not be detected.
The main theme could not be detected.
Enumerating Users (via Passive and Aggressive Methods)
Brute Forcing Author IDs -: |=================================================|
No Users Found.
No WPScan API Token given, as a result vulnerability data has not been output.
You can get a free API token with 25 daily requests by registering at https://wpscan.com/register
Finished: Mon Mar 9 11:09:04 2026
Requests Done: 1483
Cached Requests: 10
Data Sent: 445.596 KB
Data Received: 5.116 MB
Memory used: 152.148 MB
Elapsed time: 00:01:51
Color Scheme
Target
app.rzxcloud.com
Scan method
Enumerate Wordpress Users
Run command
wpscan --url https://app.rzxcloud.com/ --enumerate u --random-user-agent --force --max-scan-duration 60