WordPress User Registration Form Detected

info Web App Scanning Plugin ID 98202

Synopsis

WordPress User Registration Form Detected

Description

This is an informational plugin to inform the user that the scanner has detected a publicly accessible WordPress User Registration Form on the target application.

This may present an attacker with an exploit vector which could be leveraged using other techniques, such as a Brute-Force or Dictionary Attack

Solution

Restrict access to Registration Forms using a .htaccess file, limiting access to known IP Addresses.

See Also

https://codex.wordpress.org/htaccess

Plugin Details

Severity: Info

ID: 98202

Type: remote

Published: 3/1/2018

Updated: 4/3/2018

Scan Template: basic, full, pci, scan