Merge pull request #8323 from FLX-0x00/wordpress-yoast-seo-user-enume…

…ration implement wordpress-yoast-seo-user-enumeration
projectdiscovery · Oct 9, 2023 · c44cac4 · c44cac4
2 parents 02f924e + a8c85fc
commit c44cac4
Showing 1 changed file with 40 additions and 0 deletions.
diff --git a/http/vulnerabilities/wordpress/wp-yoast-user-enumeration.yaml b/http/vulnerabilities/wordpress/wp-yoast-user-enumeration.yaml
@@ -0,0 +1,40 @@
+id: wp-yoast-user-enumeration
+
+info:
+  name: WordPress Yoast SEO Plugin -  User Enumeration
+  author: FLX
+  severity: info
+  reference:
+    - https://developer.yoast.com/features/xml-sitemaps/functional-specification/
+  metadata:
+    max-request: 1
+    verified: true
+    google-dork: inurl:"/author-sitemap.xml"
+  tags: wp,wp-plugin,wordpress,username,disclosure
+
+http:
+  - raw:
+      - |
+        @timeout: 15s
+        GET /author-sitemap.xml HTTP/1.1
+        Host: {{Hostname}}
+
+    matchers-condition: and
+    matchers:
+      - type: word
+        part: body
+        words:
+          - "<?xml"
+          - "<lastmod>"
+          - "<loc>"
+        condition: and
+
+      - type: word
+        part: header
+        words:
+          - "application/xml"
+          - "text/xml"
+
+      - type: status
+        status:
+          - 200