See: http://killmalware.com/pitaj.rs/#
WordPress Version
4.0.8
Version does not appear to be latest 4.4 - update now.
WordPress Plugins
The following plugins were detected by reading the HTML source of the WordPress sites front page.
crafty-social-buttons latest release (1.5.3)
http://github.com/sarahhenderson/crafty-social-buttons
simple-follow-me-social-buttons-widget 2.4 latest release (3.3.3) Update required
wordpress-seo 1.6.3 latest release (3.0.6) Update required
https://yoast.com/wordpress/plugins/seo/
contact-form-7 4.0.1 latest release (4.3.1) Update required
http://contactform7.com/
-http://pitaj.rs
Detected libraries:
jquery-migrate - 1.2.1 : -http://www.pitaj.rs/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1
Info: Severity: medium
http://bugs.jquery.com/ticket/11290
http://research.insecurelabs.org/jquery/test/
jquery - 1.11.1 : -http://www.pitaj.rs/wp-includes/js/jquery/jquery.js?ver=1.11.1
plupload - : -http://www.pitaj.rs/wp-includes/js/plupload/plupload.full.min.js?ver=2.1.1 ** vulnerable!
Info: Severity: high
http://www.cvedetails.com/cve/CVE-2012-2401/
Info: Severity: high
http://www.cvedetails.com/cve/CVE-2013-0237/
2 vulnerable libraries detected
IP website risk status: http://toolbar.netcraft.com/site_report?url=http://176.9.20.138
See: http://toolbar.netcraft.com/site_report?url=pitaj.rs → http://toolbar.netcraft.com/site_report?url=http://host22.dwhost.net wXw.dreamwebhosting.net phpsessid goes over the wire unencrypted.
pol