Offline WordPress plugin version acquisition scanner and online version vulnerability identification. Scan an offline or online WordPress install for vulnerable plugins as long as it is run from Windows computer.
Offline WordPress plugin version acquisition and online version vulnerability identification
This repository provides two scripts. One for WordPress plugin version acquisition and another for version vulnerability identification. Version vulnerability identification utilizes the WPScan Vulnerability Database - https://wpvulndb.com/api. If a CVE is provide by the wpvulndb then gets CVSS via http://cve.circl.lu/api