{"id":13762830,"url":"https://github.com/topscoder/nuclei-wordfence-cve","last_synced_at":"2025-05-15T01:06:45.349Z","repository":{"id":96979584,"uuid":"607880389","full_name":"topscoder/nuclei-wordfence-cve","owner":"topscoder","description":"The EXCLUSIVE Collection of 50,000+ Nuclei templates based on Wordfence intel. Daily updates for bulletproof WordPress security.","archived":false,"fork":false,"pushed_at":"2025-05-14T03:52:56.000Z","size":141592,"stargazers_count":1031,"open_issues_count":0,"forks_count":133,"subscribers_count":20,"default_branch":"main","last_synced_at":"2025-05-14T04:59:20.759Z","etag":null,"topics":["bugbounty","cve","exploits","nuclei","nuclei-templates","pentesting","projectdiscovery","scanner","security","vulnerability","vulnerability-scanning","wordfence","wordpress"],"latest_commit_sha":null,"homepage":"","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/topscoder.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2023-02-28T21:32:00.000Z","updated_at":"2025-05-14T03:53:19.000Z","dependencies_parsed_at":null,"dependency_job_id":"8eada998-e8a6-4842-ad5e-4c7f7647890e","html_url":"https://github.com/topscoder/nuclei-wordfence-cve","commit_stats":null,"previous_names":[],"tags_count":4,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/topscoder%2Fnuclei-wordfence-cve","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/topscoder%2Fnuclei-wordfence-cve/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/topscoder%2Fnuclei-wordfence-cve/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/topscoder%2Fnuclei-wordfence-cve/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/topscoder","download_url":"https://codeload.github.com/topscoder/nuclei-wordfence-cve/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":254254041,"owners_count":22039792,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["bugbounty","cve","exploits","nuclei","nuclei-templates","pentesting","projectdiscovery","scanner","security","vulnerability","vulnerability-scanning","wordfence","wordpress"],"created_at":"2024-08-03T14:00:58.702Z","updated_at":"2025-05-15T01:06:40.337Z","avatar_url":"https://github.com/topscoder.png","language":"Python","funding_links":[],"categories":["Weapons","Python","LLM分析过程"],"sub_categories":["Tools"],"readme":"\u003cdiv align=\"center\"\u003e\n  \u003ca href=\"https://github.com/topscoder/nuclei-wordfence-cve\"\u003e\n    \u003cimg width=\"100\" align=center src=\"https://user-images.githubusercontent.com/86197446/225912783-bb6c5fa9-ce45-488b-a1fd-5af705b7cced.jpg\"\u003e\n  \u003c/a\u003e\n  \u003ch1\u003eNuclei + Wordfence = ♥\u003c/h1\u003e\n\n  \u003ch4\u003e\u003c!-- START: __TOTAL_NUM_TEMPLATES --\u003e54,641\u003c!-- END: __TOTAL_NUM_TEMPLATES --\u003e Nuclei Templates for WordPress Security Scanning 🥳\u003c/h4\u003e\n  \n  \u003cimg src=\"https://img.shields.io/github/actions/workflow/status/topscoder/nuclei-wordfence-cve/test.yml?label=CI\u0026logo=github\u0026style=flat-square\" height=\"20\" alt=\"GitHub Workflow Status\"\u003e \n  \u003cimg src=\"https://img.shields.io/badge/pre--commit-enabled-brightgreen?logo=pre-commit\u0026logoColor=white\u0026style=flat-square\" height=\"20\" alt=\"pre-commit\"\u003e \n  \u003cimg src=\"https://img.shields.io/github/last-commit/topscoder/nuclei-wordfence-cve/main?style=flat-square\u0026label=templates%20added\" height=\"20\" alt=\"Templates added\"\u003e \n\n\u003c/div\u003e\n\n---\n\nLevel up your WordPress security game! This project's got a treasure trove of fresh [Nuclei](https://github.com/projectdiscovery/nuclei) templates for WordPress. Scan for weaknesses in Core, plugins, and themes – all based on the latest intel from [Wordfence.com](https://www.wordfence.com/threat-intel/vulnerabilities/).\n\nHere's why this is your new best friend:\n\n* **Massive collection**: No more hunting for individual templates, you've got a whole arsenal at your fingertips.\n* **Always on point**: These templates stay updated with the freshest threats, so you're never behind the curve.\n* **Open source magic**: Need to tweak a template for a specific situation? No problem, you've got full control.\n\nIf you're guarding a WordPress site, this project is your secret weapon to identify vulnerabilities before the bad guys do.  Stop wasting time and secure your sites like a pro!\n\n---\n\n\u003e [!TIP]\n\u003e If you found this project helpful, please consider giving it a star on GitHub.\n\u003e Your support helps to make this project even better. 🌟\n\n### What's in it?!\n\n\u003c!-- START: __STATISTICS_TABLE --\u003e\n| category | total |\n|---|---|\n| wp-plugins | [51,248](https://github.com/search?q=%22wp-plugin%22+repo%3Atopscoder%2Fnuclei-wordfence-cve+language%3AYAML\u0026type=code\u0026ref=advsearch) |\n| wp-themes | [2,642](https://github.com/search?q=%22wp-theme%22+repo%3Atopscoder%2Fnuclei-wordfence-cve+language%3AYAML\u0026type=code\u0026ref=advsearch) |\n| wp-core | [744](https://github.com/search?q=%22wp-core%22+repo%3Atopscoder%2Fnuclei-wordfence-cve+language%3AYAML\u0026type=code\u0026ref=advsearch) |\n| other | [16](https://github.com/search?q=repo%3Atopscoder%2Fnuclei-wordfence-cve+language%3AYAML++NOT+%22wp-plugin%22+NOT+%22wp-core%22+NOT+%22wp-theme%22+path%3A%2F%5Enuclei-templates%5C%2F%2F\u0026type=code\u0026ref=advsearch) |\n\n\n| severity | total |\n|---|---|\n| info | [7](https://github.com/search?q=%22severity%3A+info%22+repo%3Atopscoder%2Fnuclei-wordfence-cve+language%3AYAML\u0026type=code\u0026ref=advsearch) |\n| low | [23,481](https://github.com/search?q=severity%3A+low+repo%3Atopscoder%2Fnuclei-wordfence-cve+language%3AYAML\u0026type=code\u0026ref=advsearch) |\n| medium | [18,170](https://github.com/search?q=severity%3A+medium+repo%3Atopscoder%2Fnuclei-wordfence-cve+language%3AYAML\u0026type=code\u0026ref=advsearch) |\n| high | [8,945](https://github.com/search?q=severity%3A+high+repo%3Atopscoder%2Fnuclei-wordfence-cve+language%3AYAML\u0026type=code\u0026ref=advsearch) |\n| critical | [4,037](https://github.com/search?q=severity%3A+critical+repo%3Atopscoder%2Fnuclei-wordfence-cve+language%3AYAML\u0026type=code\u0026ref=advsearch) |\n\u003c!-- END: __STATISTICS_TABLE --\u003e\n\n## Installation\n\nTo install this `nuclei-wordfence-cve` repository for use with Nuclei, you can use the following commands:\n\n```bash\nexport GITHUB_TEMPLATE_REPO=topscoder/nuclei-wordfence-cve\nnuclei -update-templates\n```\n\n### Usage\n\nOnce you have installed this template repo using the commands above, you can run the following command to scan for vulnerabilities using Nuclei:\n\n```bash\nnuclei -t github/topscoder/nuclei-wordfence-cve -u https://target.com\n```\n\n### Examples\n\nHere are some examples how to use the templates:\n\n* To scan for **all known vulnerabilities** in WordPress, you can run the following command:\n\n```bash\nnuclei -t github/topscoder/nuclei-wordfence-cve -u https://target.com\n```\n\n* To scan for a **CVE specific vulnerability**, you can run the following command:\n\n```bash\nnuclei -t github/topscoder/nuclei-wordfence-cve -template-id cve-2023-32961 -u https://target.com\n```\n\n* To scan only for **critical vulnerabilities**, you can run the following command:\n\n```bash\nnuclei -t github/topscoder/nuclei-wordfence-cve -severity critical -u https://target.com\n```\n\n* To scan only for **WordPress core vulnerabilities**, you can run the following command:\n\n```bash\nnuclei -t github/topscoder/nuclei-wordfence-cve -tags wp-core -u https://target.com\n```\n\n* To scan only for **WordPress plugin vulnerabilities**, you can run the following command:\n\n```bash\nnuclei -t github/topscoder/nuclei-wordfence-cve -tags wp-plugin -u https://target.com\n```\n\n* To scan only for **WordPress theme vulnerabilities**, you can run the following command:\n\n```bash\nnuclei -t github/topscoder/nuclei-wordfence-cve -tags wp-theme -u https://target.com\n```\n\n* To go wild, you can combine and combine and combine:\n\n```bash\nnuclei -t github/topscoder/nuclei-wordfence-cve -tags wp-plugin,wp-theme -severity critical,high\n```\n\n* To go even wilder, you can use the template condition flag (`-tc`) that allows complex expressions like the following ones:\n\n```bash\nnuclei -t github/topscoder/nuclei-wordfence-cve -template-condition \"contains(to_lower(name),'cross-site scripting') || contains(to_upper(name),'XSS')\" -u https://target.com\nnuclei -t github/topscoder/nuclei-wordfence-cve -template-condition \"contains(to_lower(name),'sql injection') || contains(to_lower(description),'sql injection')\" -u https://target.com\nnuclei -t github/topscoder/nuclei-wordfence-cve -template-condition \"contains(to_lower(name),'file inclusion') || contains(to_lower(description),'file inclusion')\" -u https://target.com\nnuclei -t github/topscoder/nuclei-wordfence-cve -template-condition \"contains(to_upper(name),'CSRF') || contains(to_upper(description),'CSRF')\" -u https://target.com\n```\n\n## Contributing\n\nIf you would like to contribute to this project, please feel free to fork the repository and submit a pull request.\n\n## Protecting Customized Templates\n\nTo prevent accidental overwrites, you can mark templates you've manually customized with a comment at the end. Add the line `# Enhanced` as the last line of the template file.\n\n## License\n\nThis project is licensed under the MIT License.\n\n## Contact\n\nIf you have any questions or feedback, please feel free to contact the project maintainers.\n\n~~ Please use it responsibly!\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Ftopscoder%2Fnuclei-wordfence-cve","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Ftopscoder%2Fnuclei-wordfence-cve","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Ftopscoder%2Fnuclei-wordfence-cve/lists"}