Update wordpress-user-enum.yaml

id tag in response usually respond with false positive, avatar_urls end point might be good to check in the response, cause less false positives.
jaeles-project · Mar 29, 2021 · c6b77ba · c6b77ba
1 parent 978698d
commit c6b77ba
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/common/wordpress-user-enum.yaml b/common/wordpress-user-enum.yaml
@@ -19,4 +19,4 @@ requests:
       - User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.83 Safari/537.36
     detections:
       - >-
-        StatusCode() == 200 && StringSearch("response", "id")
+        StatusCode() == 200 && StringSearch("response", "avatar_urls")