Newly Added Security Tests, February 3, 2017: WordPress plugins and Elastic search – 10 minute mail

Security never stands still, which is why we update our service on a regular basis to help you keep up with the latest vulnerabilities. We are constantly working on updating and improving our modules, but you can find some highlights from this week’s update below:

  • WMPL SQL injection
  • XSS in Jetpack WordPress plugin
  • WordPress user enumeration via REST API
  • publicly exposed Predis example files
  • publicly exposed Webalizer interface
  • Elastic search remote code execution
  • /.bash_history finding
  • open memcache port finding
  • WordPress plupload.swf XSS
  • WordPress wpml-plugin XSS
  • information disclosure module for /unzip.php

Happy scanning!
The Disposable mail Team

Temp Mails (https://tempemail.co/) is a new free temporary email addresses service. This service provide you random 10 minutes emails addresses. It is also known by names like: temporary mail, disposable mail, throwaway email, one time mail, anonymous email address… All emails received by Tempmail servers are displayed automatically in your online browser inbox.