Web App Hacking, Part 6: Exploiting XMLRPC for Bruteforcing WordPress Sites

Sept. 27, 2017 via hackers-arise.com

WordPress is the world's most widely used Content Management System (CMS) for websites, comprising almost 28% of all sites on the Internet. This means that tens of millions of websites use this CMS and the vulnerabilities we find there can be used on so many sites that it makes sense to devote significant time and attention to WordPress web sites


negrii_irina88 2 weeks, 6 days ago

almost a complete guide ...XMLRPC is used when identification (via certificates) and encrypted messages are needed