homepage Welcome to WebmasterWorld Guest from 54.242.126.126
register, free tools, login, search, pro membership, help, library, announcements, recent posts, open posts,
Become a Pro Member

Home / Forums Index / Search Engines / Search Engine Spider and User Agent Identification
Forum Library, Charter, Moderators: Ocean10000 & incrediBILL

Search Engine Spider and User Agent Identification Forum

    
Indy Library
wilderness

WebmasterWorld Senior Member wilderness us a WebmasterWorld Top Contributor of All Time 10+ Year Member Top Contributors Of The Month



 
Msg#: 4495165 posted 12:21 pm on Sep 14, 2012 (gmt 0)

This thing been around for ages.
Not sure that I've even seen one in the past six months.

I'm more curious about the vulnerability (search) term?
Anybody have a clue?

80.82.68.83 - - [14/Sep/2012:11:05:53 +0100] "GET /?author=1 HTTP/1.1" 403 559 "-" "Mozilla/3.0 (compatible; Indy Library)"


author= one thru ten was requested.

 

MxAngel



 
Msg#: 4495165 posted 4:55 am on Sep 15, 2012 (gmt 0)

There's a mention about the user enumeration on WordPress here:
[question-defense.com...]

It's adviced to block it via .htaccess


WordPress 3.3.1 User Count Enumeration - WordPress version 3.3.1 suffers from a user count enumeration vulnerability.
[packetstormsecurity.org...]

WordPress UserId & Username Enumeration Exploit/PoC Script
[riyazwalikar.com...]

Wordpress Brute Force and User Enumeration Utility
[metasploit.com...]

wilderness

WebmasterWorld Senior Member wilderness us a WebmasterWorld Top Contributor of All Time 10+ Year Member Top Contributors Of The Month



 
Msg#: 4495165 posted 9:29 am on Sep 15, 2012 (gmt 0)

"There's a mention about the user enumeration on WordPress here: "

Many thanks.

That fits, as per other WP vulnerability checks from other IP's and UA's.

MxAngel



 
Msg#: 4495165 posted 3:52 am on Sep 17, 2012 (gmt 0)

You're welcome :)

Global Options:
 top home search open messages active posts  
 

Home / Forums Index / Search Engines / Search Engine Spider and User Agent Identification
rss feed

All trademarks and copyrights held by respective owners. Member comments are owned by the poster.
Home ¦ Free Tools ¦ Terms of Service ¦ Privacy Policy ¦ Report Problem ¦ About ¦ Library ¦ Newsletter
WebmasterWorld is a Developer Shed Community owned by Jim Boykin.
© Webmaster World 1996-2014 all rights reserved