Wordpress

Question 1

How many of all websites use WordPress?

Answer 1

one-third

Question 2

What are WordPress Plugins?

Answer 2

• pieces of software that can be added to a site to provide additional functionality, such as:
  
  • different site editors
  • the ability to create forms
  • edit registration pages (and much more)

Question 3

What is the potential security issue of WordPress Plugins?

Answer 3

they are created by small teams, which means they are often rarely updated and badly maintained, therefore pose a security risks

Question 4

What are WordPress Themes?

Answer 4

combination of templates and stylesheets, that changes how a site looks

Question 5

What is the potential security issue of WordPress Themes?

Answer 5

they are created by small teams, which means they are often rarely updated and badly maintained, therefore pose a security risks (advised to use popular themes that are regularly updated)

Question 6

What are WordPress Users?

Answer 6

WordPress can allow for user registration so that members of your site can access specific areas

Question 7

Which tool is used to scan WordPress for security vulnerabilities?

Answer 7

WPScan

Question 8

How to run a wpscan against http://securityred.team?

Answer 8

wpscan --url http://securityred.team

Question 9

How to run wpscan to find vulnerable plugins?

Answer 9

wpscan –url <site.com> –enumerate vp

Question 10

How to run wpscan to find vulnerable themes?

Answer 10

wpscan –url <site.com> –enumerate vt

Question 11

How to run wpscan to find users?

Answer 11

wpscan –url <site.com> –enumerate u