freewvs.git

Strukturansicht: 9a93de7f32d62801f0924e9f343018abff36bb15
SSH HTTPS
RSS ATOM
Herunterladen
ZIP-Datei herunterladen Tar-Datei herunterladen TAR.GZ-Datei herunterladen
Hanno Böck Hanno Böck use curly set syntax and remove unneeded r for open, warnings from pyupgrade 9a93de7 @ 2020-06-10 20:09:07
freewvsdb fix json 2020-06-10 10:26:28
misc adapt wordpress helper script to json format, fix shellcheck issues 2020-02-17 17:33:46
tests use curly set syntax and remove unneeded r for open, warnings from pyupgrade 2020-06-10 20:09:07
.gitignore avoid committing pycache and python objects 2019-12-12 18:28:04
.travis.yml make test var names more generic 2020-05-03 13:26:39
CONTRIBUTIONS.md contributions file 2020-05-23 09:38:39
COPYING License change to cc0 2012-07-12 12:34:02
ISSUES initial commit 2007-11-01 16:35:50
Makefile add warning to makefile 2019-12-23 18:17:19
README.md contributions file 2020-05-23 09:38:39
freewvs limit data we read from file to avoid DoS via large files 2020-06-10 10:15:22
setup.py add setup.py 2019-12-23 18:15:16
update-freewvsdb use curly set syntax and remove unneeded r for open, warnings from pyupgrade 2020-06-10 20:09:07
README.md

freewvs

A local web vulnerability scanner.

freewvs is a tool to search webroots for know vulnerable versions of web applications.

faq

What does freewvs do?

It scans your webroot for known vulnerable versions of popular web applications.

What does the output tell me?

Output looks like this:

Joomla-3 3.9.11 (3.9.13) CVE-2019-18674 /home/joe/websites/joessite/

This says that in /home/joe/websites/joessite/, there's a Joomla installation of version 3.9.11. This version is vulnerable to CVE-2019-18674 and you should update to version 3.9.13.

CVE-2019-XXXX seems to be very minor, at least it doesn't affect me. Am I safe?

No, as freewvs only checks for the latest vulnerabilities. There may be other vulnerabilities in your version not listed by freewvs. The only way to be sure is to check the upstream changelog.

There is no version inside the brackets, what does that mean?

It means your web application has not released a security update. Often this means the software is no longer developed.

contributions

See (CONTRIBUTIONS.md)[CONTRIBUTIONS.md].

misc

freewvs was developed by schokokeks.org hosting.

It's licensed as CC0.

https://freewvs.schokokeks.org