freewvsdb | fix json | 2020-06-10 10:26:28 |
---|---|---|
misc | adapt wordpress helper script to json format, fix shellcheck issues | 2020-02-17 17:33:46 |
tests | use curly set syntax and remove unneeded r for open, warnings from pyupgrade | 2020-06-10 20:09:07 |
.gitignore | avoid committing pycache and python objects | 2019-12-12 18:28:04 |
.travis.yml | make test var names more generic | 2020-05-03 13:26:39 |
CONTRIBUTIONS.md | contributions file | 2020-05-23 09:38:39 |
COPYING | License change to cc0 | 2012-07-12 12:34:02 |
ISSUES | initial commit | 2007-11-01 16:35:50 |
Makefile | add warning to makefile | 2019-12-23 18:17:19 |
README.md | contributions file | 2020-05-23 09:38:39 |
freewvs | limit data we read from file to avoid DoS via large files | 2020-06-10 10:15:22 |
setup.py | add setup.py | 2019-12-23 18:15:16 |
update-freewvsdb | use curly set syntax and remove unneeded r for open, warnings from pyupgrade | 2020-06-10 20:09:07 |
A local web vulnerability scanner.
freewvs is a tool to search webroots for know vulnerable versions of web applications.
It scans your webroot for known vulnerable versions of popular web applications.
Output looks like this:
Joomla-3 3.9.11 (3.9.13) CVE-2019-18674 /home/joe/websites/joessite/
This says that in /home/joe/websites/joessite/, there's a Joomla installation of version 3.9.11. This version is vulnerable to CVE-2019-18674 and you should update to version 3.9.13.
No, as freewvs only checks for the latest vulnerabilities. There may be other vulnerabilities in your version not listed by freewvs. The only way to be sure is to check the upstream changelog.
It means your web application has not released a security update. Often this means the software is no longer developed.
See (CONTRIBUTIONS.md)[CONTRIBUTIONS.md].
freewvs was developed by schokokeks.org hosting.
It's licensed as CC0.