No description, website, or topics provided.
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
.gitattributes
.gitignore
README.md
class-IXR.php
passwords.txt
users.txt
wpbruteforce.php

README.md

WordPress XMLRPC BruteForce PoC

This PoC script relies of a vulnerability in WordPress systems been available from version 3.5 to version 4.0 (included) that allow a brute force attacks through xmlrpc.php file A malicious attacker might to hack a WordPress users using this vulnerability

USAGE:

./wpbruteforce.php URL users.txt passwords.txt

php wpbruteforce.php URL users.txt passwords.txt