See: https://www.virustotal.com/en/url/94c4bd9409ff3c869a1f4c568f47da64c7ea7593fd290ed2a4de2f18387d5fa1/analysis/1455746145/
No detection: http://quttera.com/detailed_report/aldenbailey.org & https://sitecheck.sucuri.net/results/aldenbailey.org
-http://aldenbailey.org
Detected libraries:
jquery-migrate - 1.2.1 : -http://www.aldenbailey.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1
Info: Severity: medium
http://bugs.jquery.com/ticket/11290
http://research.insecurelabs.org/jquery/test/
jquery.prettyPhoto - 3.0 : (active1) -http://www.aldenbailey.com/wp-content/themes/origami/js/prettyphoto/js/jquery.prettyPhoto.js?ver=3.0a
Info: Severity: high
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-6837&cid=3
Info: Severity: high
https://github.com/scaron/prettyphoto/issues/149
https://blog.anantshri.info/forgotten_disclosure_dom_xss_prettyphoto
jquery - 1.11.2 : (active1) -http://www.aldenbailey.com/wp-includes/js/jquery/jquery.js?ver=1.11.2
(active) - the library was also found to be active by running code
2 vulnerable libraries detected
WordPress check:
WordPress Version
4.2.7
Version does not appear to be latest 4.4.2 - update now.
Warning User Enumeration is possible :o
The first two user ID’s were tested to determine if user enumeration is possible.
ID User Login
1 admin admin
Warning Directory Indexing Enabled :o
In the test we attempted to list the directory contents of the uploads and plugins folders to determine if Directory Indexing is enabled. This is an information leakage vulnerability that can reveal sensitive information regarding your site configuration or content.
/wp-content/uploads/ enabled
Check for Cloaking: There is a difference of 21475 bytes between the version of the page you serve to Chrome and the version you serve to GoogleBot. This probably means some code is running on your site that’s trying to hide from browsers but make Google think there’s something else on the page.
Additionally, a 403 Forbidden error was encountered while trying to use an ErrorDocument to handle the request.
Apache/2.2.31 (CentOS) Server at www86.wewecom.com Port 80 -> http://toolbar.netcraft.com/site_report?url=http://www86.wewecom.com
26 issues: https://sritest.io/#report/9e1d0197-c846-4b5b-b04f-9edd2a8d7721
Website is blocked by Bitdefender Traffic Light.
3 errors and 7 warnings: https://mxtoolbox.com/domain/aldenbailey.org/
polonus