wpxploit icon indicating copy to clipboard operation
wpxploit copied to clipboard

Published 20 hours ago verified publisher icon relarizky

Not working under mod_security (trustawave)

Open mkmnstr123 opened this issue 3 years ago • 2 comments

Hello, I found that the tool is always stopping at the password 123456 (default wordlist) and recognizing it as valid on different accounts. The server is behind Mod_Security.

Mod_Security returns a 406 Not Acceptable response on every attempt, so it might being treated as a false positive.

Best regards

mkmnstr123 avatar Feb 25 '21 23:02 mkmnstr123

Thanks for your found issues, man. I will try to figure out the problem

relarizky avatar Feb 28 '21 11:02 relarizky

Sure. No prob. I tested a Library today. W00tmod, a Mod Security scanner (it tells u which one it is) and with that, your program can be enhanced. Cheers! If you want some help lemme know

mkmnstr123 avatar Mar 01 '21 08:03 mkmnstr123