A tool for automated detection and exploitation of known (CVE) vulnerabilities in WordPress.

Features:
📍 Support for typical modules targeting plugin and theme exploits.
📍 Generation of reports on detected and exploited vulnerabilities.
📍 CLI interface with options for test configuration and customization.

Unlike WPScan and CMSmap, it focuses not only on information gathering but also on practical CVE exploitation.

📎 Tool: https://github.com/InMyMine7/Mephisto

💬 Discuss

Mephisto — a scanner and exploitation framework for WordPress vulnerabilities