Советовал бы посмотреть в сторону шаблонов nuclei.
id: CVE-2017-5611
info:
name: "WordPress Core < 4.7.2 - Authenticated SQL Injection"
author: topscoder
severity: high
description: "SQL injection vulnerability in wp-includes/class-wp-query.php in WP_Query in WordPress before 4.7.2 allows remote attackers to execute arbitrary SQL commands by leveraging the presence of an affected plugin or theme that mishandles a crafted post type name."
tags: cve,wordpress,wp-core,high
http:
- method: GET
path:
- "{{BaseURL}}"
- "{{BaseURL}}/wp-admin/install.php"
- "{{BaseURL}}/feed/"
- "{{BaseURL}}/?feed=rss2" # alternative if /feed/ is blocked
redirects: true
max-redirects: 2
stop-at-first-match: true
matchers-condition: and
matchers:
- type: dsl
dsl:
- compare_versions(version_by_generator, '<= 3.7')
- compare_versions(version_by_js, '<= 3.7')
- compare_versions(version_by_css, '<= 3.7')
- type: status
status:
- 200
extractors:
- type: regex
name: version_by_generator
group: 1
regex:
- '(?m)https:\/\/wordpress.org\/\?v=([0-9.]+)'
- type: regex
name: version_by_js
group: 1
regex:
- 'wp-emoji-release\.min\.js\?ver=((\d+\.?)+)\b'
- type: regex
name: version_by_css
group: 1
regex:
- 'install\.min\.css\?ver=((\d+\.?)+)\b'